Hands-On Apple 189 transcript
Please be advised this transcript is AI-generated and may not be word for word. Time codes refer to the approximate times in the ad-supported version of the show
0:00:00 - Mikah Sargent
Coming up on Hands-On Apple, let's take a look at a recent printer vulnerability and what you should be doing on your Mac. Stay tuned.
0:00:11 - Leo Laporte
Podcasts you love From people you trust. This is Twit.
0:00:30 - Mikah Sargent
Hello and welcome to Hands-On Apple. I'm Micah Sargent and, as always, this is the show where I help you make the most of your various Apple devices by talking about how to set up the right settings and use the right apps, and everything in between. Today, I want to talk about a recent vulnerability, a security flaw that was discovered, and one of the big culprits of the security flaw is a very popular printer company, brother. So, with this, the cybersecurity company Rapid7 discovered several vulnerabilities that affected printer models from Toshiba, from Fujifilm and from Brother, and, of it, it affected 689 Brother printers. So, given that that's the case, let's talk about what we need to do. First and foremost, understand that, with this security vulnerability, essentially what's happening in the background is a bad actor is able to gain access to the printer and, in doing so, is able to get the printer and, by the way, this is without any authentication, so, without needing to type in any passwords or know the right things gain access to the printer and get the printer to spit out its serial number. When it spits out its serial number, the bad actors are then able to generate and figure out what the admin password is for that printer, because it turns out that the serial number is used to generate the admin password, the default admin password. So this whole episode is about using the built in functionality of your Mac to actually get into the printer and change your default password. So let's head over to Mac OS and take a look, believe it or not.
One of my favorite screens, one of my favorite settings places on Mac OS is the printers and scanners page, and there are a few ways to get it. My favorite way is to hold down command, hit space and type in printers and scanners. That'll, of course, bring up the printers and scanners page, which is great. But if that's not the way you want to access it, let me tell you how to get there. Otherwise, just launch system settings, scroll down to printers and scanners and click there. Now you can see here we are, on our page.
Now, once we're here, we know we're looking at this brother printer and we want to make sure of a few things. We want to make sure that the latest firmware is installed for this Brother printer and that it does have the default password changed. So understand that there are multiple ways to go about getting to this page. If you know the IP address for the printer for one. You can use that to get to the page, but I want to show you how to do it with macOS defaults. So I will click on Brother Printer and up will come a page that lets me access the printer queue so I can see what files are going to be printed the name of the printer, the location as I have set it, whether I want to share this printer on the network you can see, I currently have that disabled and then open sharing settings to get access to it even more, and then the kind of printer that it is. Now, what this means in this instance is the software that is being used to access and communicate with the printer. So in this case it's using an air print functionality to be able to communicate with the printer, and then it talks about the current driver. You can remove the printer from your printers and scanners list and you can set it as the default printer.
What we want to do is choose options and supplies. When we click on this page, we once again can see the name, but we can also change the name here. We see its location, we can change the location, we see the model and again, this is not exactly the model because, as you can tell, this is instead the firmware software language that the, that macOS is using to communicate with this printer the device's name and the driver version, and you can click Find Printer if you are looking for more information about its location on the network. But this page also has supply levels. Now, this, of course, is the brother printer that has long been suggested as the printer to get, and part of the reason why I am covering this on this episode, and you can see that, of course, because it is the laser printer. It just has black toner, and so the black toner is nearly full.
Now what we want to do is go into General and we want to choose Show Printer Web Page. That's going to bring up a Safari page where we can see the information for where the printer is. Now you'll notice that the URL in my case is not the IP address, but instead is a series of numbers and letters, and then it says dot local. Now you, like I, will probably see a thing that says this connection is not private, and that is because it attempts to visit this page via HTTPS, and it is an HTTP page, meaning that it is not encrypted, but it is on your local network, we'll choose show details and down below, where it says to learn more, you can view the certificate, which you can. But what we want, if you understand the risks involved, as I do, which is just that it's not an encrypted connection between me and the printer, you can visit this website. We'll choose that. It says are you sure you really want to do this? I say yes, I do, and then it will. Let me go to this website. Here you can see that it slowly loads the local website for the printer. This is essentially a little server on the printer that has this information, so it slowly loads.
Now the good news is I have a password set for this printer that is different from the default password that is set on the back, that is printed on the back of the printer. So what I will do is I will pop that in Now. I do, in this case, need to to copy and paste the password. It's a very long one, so we're going to switch away real quick to me while I do this, and then I will paste that in, like so, and choose login To then go about changing the password. You can get to this in many ways, but I want to also talk about how, if you have one of these brother printers, these screens are going to look familiar to you.
Choose Firmware Update and make sure that your firmware is updated to the latest version. Now, importantly, the Firmware Update doesn't completely solve the issue. Turns out that it's a manufacturing issue that is at the heart of this and it requires a change from Brother going forward. But the firmware update does deal with some of the other concerns that the company had regarding this vulnerability. So make sure that you change those firmware updates or you check for a firmware update and then over here in the left hand side we can see under administrator tab, we can click on login password and we can change it if we'd like.
If you have not changed it from the default password, this is where you do it and you need to do it. So I can close out of this because I know that I've changed it from the default, click OK and click done. And then I just want to mention that again in this printers and scanners section I've also got my other printer that's on the network and I could click on options and supplies. Here I can see the supply levels for the cyan, magenta, yellow and black or key cartridges, because this is an ink printer and I could also visit the printer web page for this, which once again shows that it is a local, unencrypted connection, and I can visit it to see that. Now you'll notice that here as well, I do have a custom password set, so that's the big thing. Even if you think that your printer or your other devices are never going to be accessed from the external, the wide area, it doesn't matter.
Change the default passwords. If your concern is that, well then you can't look on the back of the printer to see what the password is. Get a little label, stick a little label on there. Get a piece of tape, a little piece of masking tape or painter's tape. Write your new password that you set on there. Stick it on the back of the printer In any case, or do like I do, which is put it in a password manager. Change the default password for any devices you have in your home that have any type of connection to the internet and, frankly, if you have devices that are not connected to the internet that have passwords, you should also change them from the default. So that is a look at accessing your printer's local webpage via macOS. Thank you so much for tuning in to this episode of Hands on Apple. As always, it is my pleasure to bring this show to you each and every week. Be sure to tune in next week for another episode of Hands on Apple.
0:10:11 - Leo Laporte
Goodbye, to join a tech community like no other. You can gain exclusive access to our incomparable quality tech content with Club Twit. As a member, you'll enjoy all Twit TV shows, ad-free plus access, private video feeds for insider shows like iOS Today, home Theater, geeks and so much more. Dive into the members-only Twit Plus bonus feed for behind-the-scenes content, club discussions and special events. But here's the best perk Join our incredible Discord community to watch live show productions, chat with hosts and participate in exclusive members-only activities. It's your backstage pass to the world of Twit. Whether you're a tech enthusiast or a lifelong learner, club Twit elevates your knowledge while entertaining your interests. Get two weeks free when you sign up now and unlock unparalleled access at twittv slash club twit. That's twittv slash club twit and, from the bottom of my heart, thank you and welcome to the club.
