Printer Company Procolored Delivers Infected Software for Half a Year

By Netvora Tech News

---

A major printer company, Procolored, has been delivering infected software to its customers for half a year, according to antivirus firm G Data. The software, designed for various UV-printer models, is distributed via both a USB stick and a cloud storage service called MEGA. A YouTuber recently posted a warning on Reddit that the included USB stick contained the Floxif malware. This malware infects .dll and .exe files and can spread through USB sticks. A G Data researcher saw the post and decided to investigate the software offered by Procolored on MEGA. The investigation revealed two types of malware being distributed with the software.

Malware Discovered

The malware includes a backdoor called XRed, which gives attackers complete control over the system. The malware is designed to steal cryptocurrency and infect .exe files. Users of cryptocurrency who want to make a payment or transfer crypto to another wallet often copy the recipient's wallet address and paste it into a transaction field. The malware modifies the copied address and replaces it with the attacker's address. If the user does not notice, the crypto will be sent to the wrong wallet.

Company Response

Initially, Procolored denied delivering infected software to its customers. In a statement to G Data, the company said that the software it offers online is copied, and it is possible that a virus was introduced during this process. Against the YouTuber who reviewed one of the printers, Procolored stated that the computer of an employee responsible for the "software process" may have been infected.

Consequences

The discovery of the malware has serious consequences for Procolored's customers who may have received the infected software. It is unclear how many customers were affected, but it is likely that many users are unaware of the malware on their computers. The incident highlights the importance of verifying the authenticity of software and taking necessary precautions to avoid malware infections.

• G Data discovered two types of malware being distributed with Procolored's software.
• The malware includes a backdoor called XRed, which gives attackers complete control over the system.
• The malware is designed to steal cryptocurrency and infect .exe files.
• Procolored initially denied delivering infected software but later suggested that a virus may have been introduced during the software copying process.