Researcher Michael Myng found a deactivated keylogger in a piece of software found on over 460 HP laptop models. A full list of affected laptops is here. The keylogger is deactivated by default but could represent a privacy concern if an attacker has physical access to the computer.

“Some time ago someone asked me if I can figure out how to control HP’s laptop keyboard backlight,” wrote Myng. “I asked for the keyboard driver SynTP.sys, opened it in IDA, and after some browsing noticed a few interesting strings.”

The strings led to something that appeared to be a hidden keylogger – a program that sends typed characters to an attacker – in a Synaptics device driver. Given that the decompiled code prepared and sent key presses to an unnamed target, Myng was fairly certain he had something interesting on his hands.

Luckily, HP responded quickly.

The bottom line? Update your HP laptop as soon as possible. If you are on HP’s list of affected laptops you can download the fix here.

• Author
• Recent Posts

follow

Peter Kivuti

Lead Concept Developer at KayTouch Solutions

Data Modelling, Design & Development

follow

Latest posts by Peter Kivuti (see all)

• “New to you” – Discover more content on your YouTube homepage - October 26, 2021
• How To Prepare Your Website For The Holiday Shopping Season - October 23, 2021
• WhatsApp reinvents the ‘Yellow Pages’ - October 19, 2021