Canon

Canon, a well-known hardware provider, has recently launched a cybersecurity subscription service aimed at protecting its print devices. However, this launch coincides with the discovery of a critical vulnerability (CVE-2025-1268) in Canon's printer drivers, which could allow attackers to execute arbitrary code or disrupt printing operations. Additionally, there are reports of root-level access to Canon's internal firewall systems being sold on underground forums, raising concerns about potential network breaches. While Canon has issued advisories and urged users to update vulnerable drivers, the persistence of such flaws underscores the risks associated with poorly secured print infrastructure.

Source: https://www.techradar.com/pro/now-even-your-printer-company-may-want-to-sell-you-endpoint-protection-as-a-subscription-will-others-follow-suit

TPRM report: https://www.rankiteo.com/company/canon-inc-

"id": "can354080725",
"linkid": "canon-inc-",
"type": "Vulnerability",
"date": "6/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Technology, Printing, Cybersecurity',
                        'name': 'Canon',
                        'type': 'Corporation'}],
 'attack_vector': 'Exploitation of printer driver vulnerability and potential '
                  'network breach',
 'customer_advisories': 'Advisories issued urging users to update vulnerable '
                        'drivers',
 'description': "Canon's printer drivers face critical vulnerability exposure "
                '(CVE-2025-1268) and potential network breach with root access '
                'to its firewall allegedly sold online. Canon launches a new '
                'security subscription service in response.',
 'impact': {'brand_reputation_impact': 'Reputational risk due to '
                                       'vulnerabilities and potential breach',
            'operational_impact': 'Potential halting of printing or arbitrary '
                                  'code execution',
            'systems_affected': 'Canon printer drivers and potentially '
                                'internal firewall systems'},
 'initial_access_broker': {'data_sold_on_dark_web': 'Claims of root access '
                                                    'sold on dark web forums',
                           'entry_point': 'Potential root-level access to '
                                          'internal firewall systems'},
 'post_incident_analysis': {'corrective_actions': 'Patching vulnerabilities, '
                                                  'launching new security '
                                                  'subscription services',
                            'root_causes': 'High-severity driver '
                                           'vulnerabilities and potential '
                                           'network breach'},
 'references': [{'source': 'Cybersecurity News'}, {'source': 'Security Week'}],
 'response': {'containment_measures': 'Advisories issued, urging users to '
                                      'update vulnerable drivers',
              'enhanced_monitoring': 'Proactive monitoring included in Premium '
                                     'tier of new security subscription',
              'remediation_measures': 'Patching vulnerabilities, launching new '
                                      'security subscription services'},
 'title': 'Canon Printer Driver Vulnerability and Potential Network Breach',
 'type': 'Vulnerability and Potential Breach',
 'vulnerability_exploited': 'CVE-2025-1268'}