A potential security vulnerability was recently discovered by Security Researcher Michael Myng due to a hidden keylogging code affecting numerous HP laptops.
Mr Myng stumbled upon the keylogger while inspecting Synaptics Touchpad software; he was trying to ascertain how the keyboard backlight on a HP laptop is controlled.
It has since been revealed by HP that the cause is due to certain versions of Synaptics touchpad drivers which impacts all Synaptics OEM partners.
In order to take advantage of the vulnerability, a party would need administrative privileges. Therefore, neither Synaptics nor HP has access to customer data as a result of this issue.
A security bulletin has been published by HP which includes a patch release, along with a list of impacted products.
Support: For issues regarding implementation of HP's recommendations, contact your normal HP Services support channel. For other issues about the content of the bulletin, send an e-mail to hp-security-alert@hp.com.
- By Charley Barker (Communications & Content Executive)
