Hidden software program that may document each letter typed on a pc keyboard has been found pre-installed on a whole lot of HP laptop computer fashions.
Safety researcher Michael Myng discovered the keylogging code in software program drivers preinstalled on HP laptops to make the keyboard work.
HP stated greater than 460 fashions of laptop computer have been affected by the “potential safety vulnerability”.
It has issued a software program patch for its prospects to take away the keylogger.
The difficulty impacts laptops within the EliteBook, ProBook, Pavilion and Envy ranges, amongst others. HP has issued a full checklist of affected gadgets, courting again to 2012.
In a press release, the corporate stated: “HP makes use of Synaptics’ touchpads in a few of its cell PCs and has labored with Synaptics to offer fixes to their error for impacted HP techniques, accessible through the safety bulletin on HP.com.”
‘Lack of confidentiality’
Mr Myng found the keylogger whereas inspecting Synaptics Touchpad software program, to determine how you can management the keyboard backlight on an HP laptop computer.
He stated the keylogger was disabled by default, however an attacker with entry to the pc might have enabled it to document what a person was typing.
In response to HP, it was initially constructed into the Synaptics software program to assist debug errors.
It acknowledged that would result in “lack of confidentiality” however it stated neither Synaptics nor HP had entry to buyer knowledge because of the flaw.
In Might, an identical keylogger was found within the audio drivers pre-installed on a number of HP laptop computer fashions.
On the time, the corporate stated the keylogger code had been mistakenly added to the software program.