Monday in CE: Keyloggers Pre-Installed in HP Laptops, Google Home Gets Less Creepy Features
In the latest war on cybersecurity, HP laptops dating back to 2012 have not only been found with keyloggers they may have been pre-installed. Security researcher Michael Myng found the keylogger and HP confirmed that more than 460 models were affected by the "potential security vulnerability".
In layman's terms, a keylogger records every keystroke - and possibly mouse click or even which window it is even being inputted in - and sends that full length of actions to the attacker. It is nearly invisible because it operates in the background and, in this case, came pre-installed. The keylogger was packaged alongside a Synaptics driver, typically uses to control the touchpad.
Myng notes that the keylogger is disabled by default, but can be activated pretty effortlessly. According to HP, it was originally built into the Synaptics software to help debug errors. It acknowledged that could lead to "loss of confidentiality" but it said neither Synaptics nor HP had access to customer data as a result of the flaw.