HP offers to hack punters' systems

Penetration tests

By Nick Farrell

Thu Mar 22 2007, 22:46

HAWKER OF PRINTER INK, HP is so good at hacking into journalists, board members and its own staff, it has decided to flog its services to any one who asks.

According to ZDNet, HP wants to launch a penetration-testing service for businesses in October. It is unclear if its methods will involve ringing up and pretending to be someone else, fishing around in rubbish bins or outright spying. Apparently HP will draw the line at sending worms into to punters' servers.

The company said it would use the same techniques as hackers to gain access to its customers' machines. Its methods will controlled and will not propagate itself, HP promised.

It seems the penetration-testing service, HP Active Countermeasures (HPAC), will exploit vulnerabilities by sending malformed protocol messages to open ports.

HP hackers will use buffer overflows, heap overflows and stack overflows to gain control of clients' systems.

Then the team from HP will alert customers and work with them if necessary until the issue is resolved. Of course, punters must give permission for HP to scan their systems so it wont be as if they were an HP board member or anything.

L'INQ
ZDNet

HP rubbishes researchers' claims that Laserjets could catch on fire Pours cold water on a burning issue Wednesday, 30 November 2011, 15:13 PM Read more	Exploithub offers $4,000 for twelve working exploits Kicks off a bounty programme Friday, 7 October 2011, 14:06 PM Read more
Top 25 dangerous software errors are revealed SQL injection tops the list Thursday, 30 June 2011, 15:33 PM Read more	Hackers could hit power plants through Siemens vulnerabilites Echoes of Stuxnet Friday, 20 May 2011, 12:03 PM Read more
Cyber jihadists could use Stuxnet worm to attack the west Mikko Hypponen of F-Secure says blame George W Bush Friday, 22 April 2011, 09:00 AM Read more	Google squashes Chrome security bugs, updates Flash Player Bug-finders win cash prizes Friday, 15 April 2011, 13:25 PM Read more

< Previous article| Next article >

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

Project Manager (BI)

Project Manager (BI) ...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

HP offers to hack punters' systems

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review