Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Mac Users Unable To Print After Apple Revoked HP Certificate

https://open.spotify.com/show/3Gmj15x6cGrgJEzmGnDTTj

Mac Users Unable To Print After Apple Revoked HP Certificate

Apple macOS X users with HP printers are left unable to print from their computers after Apple revoked a certificate that signed HP’s print drivers.

The result was print drivers being mistaken on macOS X for malware, and user complaints springing up over the weekend.

Print drivers mistook for malware

As observed by BleepingComputer, when printing a document from a MacBook running macOS Catalina (10.15.7 (19H2)) to an HP printer, the job remains in print queue but does not complete. That’s because the corresponding print driver is being mistaken as malware.

Reports of macOS users with HP printers experiencing the issue emerged on AppleHP forums, and of course, Twitter.

apple macos x print warning
Legitimate HP print drivers mistaken for malware on macOS X
Source: BleepingComputer

The problem seems to impact both macOS Catalina (10.15) and Mojave (10.14) users with HP printers.

Also Read: 5 Tips In Using Assessment Tools To A Successful Business

Furthermore, the print queue shows a mysterious “Encryption credentials have expired” message.

MacOS X print queue with encryption credentials expired message.
Print queue with “encryption credentials have expired” message.
Source: BleepingComputer

The issue stems from Apple having recently revoked the digital certificate installed on HP’s printers via XProtect.

XProtect is a feature by which Apple can prevent Mac devices from running certain applications it no longer deems trustworthy. 

Apple does so by revoking the cryptographic code-signing certificates associated with these applications.

“There is no central database of certs cancelled by XProtect, there’s one for each OS version it seems, and Catalina and Mojave were selected in particular. Apple chose to revoke the HP driver cert, or perhaps was asked to do so by HP,” explained The Register. 

How to resolve the issue?

macOS X users can resolve the issue by following a series of steps outlined below.

The advice specifically applies to HP OfficeJet models with wireless printing and the printer’s web interface enabled.

  1. Remove the /Library/Printers/hp folder to delete any old drivers that are being incorrectly flagged as malware
     
  2. Open System Preferences on your macOS X and navigate to the Printers & Scanners area.
     
  3. Double-click on the printer and then select “Printer settings.” and then click “Show Printer Web Page…”
     show printer web page macos x
  4. Once on the printer’s web page, follow the steps provided by HP’s Knowledge Base to generate a new Self-Signed certificate for the device.
     
  5. This generates a new certificate for your HP printer with 10-year validity. Ignore the “Not Secure” warning; that is typical for self-signed certificates.
     ssl certificate hp officejet
     
  6. Now return to the Printers & Scanners area, right-click (Cmd+click) on your printer and select the “Reset printing system…” option
     macos x reset printing systemReset Printing System on macOS X
    Source: BleepingComputer 
  7. This will uninstall and remove the printer from the list. Now click the “+” icon to re-add it.
     
  8. Select the printer as it re-appears on the list. Make sure “Secure AirPrint” is selected next to the “Use” dropdown and click “Add.”

    You may also use the “IP” option to add the printer by its IP address should the “Bonjour” (AirPrint) connectivity fail.
     hp readd printer macos x 

Also Read: NDA Data Protection: The Importance, Its Meaning And Laws

You should now be able to print from applications such as your web browser and Preview seamlessly to your printer.

The “Encryption credentials have expired” message should also no longer appear in your print queue.

While SSL certificate expiry dates and revocations are essential security features, these can become a hindrance in legitimate use cases if not planned properly by the industry players.

In Apple’s case, revoking HP’s certificates without a heads up left very many users without a means to print and having to deal with confusing “malware” alerts.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us