HP patches hundreds of laptops to remove hidden keylogger Credit: Gordon Mah Ung/IDG

HP patches hundreds of laptops to remove hidden keylogger

If you bought an HP laptop anytime in the last five years, it could be tracking your every keystroke. Over the weekend HP revealed that nearly 500 of its notebooks dating as far back as 2012 shipped with a secret keylogger installed. Alongside the announcement, HP released driver updates to eradicate the software on affected laptops.

Security researcher Michael Myng discovered the keylogger when probing the Synaptics touchpad software on an HP laptop. HP’s security bulletin says the “potential security vulnerability” affects all laptops with “certain versions of Synaptics touchpad drivers”—not necessarily just HP models.

The keylogger is disabled by default, however. “A party would need administrative privileges in order to take advantage of the vulnerability,” the bulletin states. “Neither Synaptics nor HP has access to customer data as a result of this issue.” HP told Myng that the keylogger was a debugging tool.

How to remove the keylogger in HP laptops

The same security bulletin includes separate software update links for every HP laptop loaded with the keylogger. HP says you should install those updates “as soon as possible.” CSO counted them all up and found a total of 475 affected laptops, with 303 being consumer laptops. Spectre, Envy, Pavilion, Omen, Compaq—they all contain the keylogger.

You’ll need to know your laptop’s model number to download the correct software package. You can find HP laptop model numbers by looking for the information on a sticker on the bottom of the machine. If you don’t see the sticker, you can press Fn + Esc simultaneously to summon HP’s System Information window. You’re looking for the “product name” entry. Once you know it, head to HP’s security bulletin, press Ctrl F, and type in your laptop’s details to quickly find the correct update for your system. You don’t want to sift through all 475 listings individually to find the right one! 

This isn’t the first time HP has run into keylogging trouble in 2017. In May, HP patched 30 laptops after a diagnostic update to the audio drivers accidentally resulted in capturing every keystroke and saving it to a local file. We’re leaving superb systems like the HP Spectre x360 on PCWorld’s list of the best laptops because the actions weren’t nefarious, but here’s hoping the company steps up its software quality assurance going forward.

IDG Insider

PREVIOUS ARTICLE

«Apple to buy music-recognition app Shazam

NEXT ARTICLE

Cambridge Audio CXUHD 4K Ultra HD Blu-ray player review: A classy chassis with Dolby Vision»
author_image
IDG Connect

IDG Connect tackles the tech stories that matter to you

Add Your Comment

Most Recent Comments

Our Case Studies

IDG Connect delivers full creative solutions to meet all your demand generatlon needs. These cover the full scope of options, from customized content and lead delivery through to fully integrated campaigns.

images

Our Marketing Research

Our in-house analyst and editorial team create a range of insights for the global marketing community. These look at IT buying preferences, the latest soclal media trends and other zeitgeist topics.

images

Poll

Should the government regulate Artificial Intelligence?