studio Ulu’s Post

Bambu Labs' 3D Printer 'Authorization' Update Beta Sparks Concerns: Slashdot reader jenningsthecat writes: 3D printer manufacturer Bambu Labs has faced a storm of controversy and protest after releasing a security update which many users claim is the first step in moving towards an HP-style subscription model. Bambu Labs responded that there's misinformation circulating online, adding "we acknowledge that our communication might have contributed to the confusion." Bambu Labs spokesperson Nadia Yaakoubi did "damage control", answering questions from the Verge: Q: Will Bambu publicly commit to never requiring a subscription in order to control its printers and print from them over a home network? A: For our current product line, yes. We will never require a subscription to control or print from our printers over a home network... Q: Will Bambu publicly commit to never putting any existing printer functionality behind a subscription? Yes... Bambu's site adds that the security update "is beta testing, not a forced update. The choice is yours. You can participate in the beta program to help us refine these features, or continue using your current firmware." Hackaday notes another wrinkle: This follows the original announcement which had the 3D printer community up in arms, and quickly saw the new tool that's supposed to provide safe and secure communications with Bambu Lab printers ripped apart to extract the security certificate and private key... As the flaming wreck that's Bambu Lab's PR efforts keeps hurtling down the highway of public opinion, we'd be remiss to not point out that with the security certificate and private key being easily obtainable from the Bambu Connect Electron app, there is absolutely no point to any of what Bambu Lab is doing. The Verge asked Bambu Labs about that too: Q: Does the private key leaking change any of your plans? No, this doesn't change our plans, and we've taken immediate action. Bambu Labs had said their security update would "ensure only authorized access and operations are permitted," remembers Ars Technica. "This would, Bambu suggested, mitigate risks of 'remote hacks or printer exposure issues' and lower the risk of 'abnormal traffic or attacks.'" This was necessary, Bambu wrote, because of increases in requests made to its cloud services "through unofficial channels," targeted DDOS attacks, and "peaks of up to 30 million unauthorized requests per day" (link added by Bambu). But Ars Technica also found some skepticism online: Repair advocate Louis Rossmann, noting Bambu's altered original blog post, uploaded a video soon after, "Bambu's Gaslighting Masterclass: Denying their own documented restrictions"... suggesting that the company was asking buyers to trust that Bambu wouldn't enact restrictive policies it otherwise wrote into its user agreements. And Ars Technica also cites another skeptical response from a video posted by open source hardware hacker and YouTube creator Jeff Geerling:

What is your backup plan? We can be there when you need help.

Bambu Labs' 3D Printer 'Authorization' Update Beta Sparks Concerns: Slashdot reader jenningsthecat writes: 3D printer manufacturer Bambu Labs has faced a storm of controversy and protest after releasing a security update which many users claim is the first step in moving towards an HP-style subscription model. Bambu Labs responded that there's misinformation circulating online, adding "we acknowledge that our communication might have contributed to the confusion." Bambu Labs spokesperson Nadia Yaakoubi did "damage control", answering questions from the Verge: Q: Will Bambu publicly commit to never requiring a subscription in order to control its printers and print from them over a home network? A: For our current product line, yes. We will never require a subscription to control or print from our printers over a home network... Q: Will Bambu publicly commit to never putting any existing printer functionality behind a subscription? Yes... Bambu's site adds that the security update "is beta testing, not a forced update. The choice is yours. You can participate in the beta program to help us refine these features, or continue using your current firmware." Hackaday notes another wrinkle: This follows the original announcement which had the 3D printer community up in arms, and quickly saw the new tool that's supposed to provide safe and secure communications with Bambu Lab printers ripped apart to extract the security certificate and private key... As the flaming wreck that's Bambu Lab's PR efforts keeps hurtling down the highway of public opinion, we'd be remiss to not point out that with the security certificate and private key being easily obtainable from the Bambu Connect Electron app, there is absolutely no point to any of what Bambu Lab is doing. The Verge asked Bambu Labs about that too: Q: Does the private key leaking change any of your plans? No, this doesn't change our plans, and we've taken immediate action. Bambu Labs had said their security update would "ensure only authorized access and operations are permitted," remembers Ars Technica. "This would, Bambu suggested, mitigate risks of 'remote hacks or printer exposure issues' and lower the risk of 'abnormal traffic or attacks.'" This was necessary, Bambu wrote, because of increases in requests made to its cloud services "through unofficial channels," targeted DDOS attacks, and "peaks of up to 30 million unauthorized requests per day" (link added by Bambu). But Ars Technica also found some skepticism online: Repair advocate Louis Rossmann, noting Bambu's altered original blog post, uploaded a video soon after, "Bambu's Gaslighting Masterclass: Denying their own documented restrictions"... suggesting that the company was asking buyers to trust that Bambu wouldn't enact restrictive policies it otherwise wrote into its user agreements. And Ars Technica also cites another skeptical response from a video posted by open source hardware hacker and YouTube creator Jeff Geerling:

🌐💼 Step into the Advanced Age of Printing Security with Confidence: - Ensure top-tier confidentiality for all your sensitive printouts, shielding them from unauthorized access. - Seamlessly comply with rigorous compliance requirements, safeguarding your reputation and operations. - Discover how Espria consistently outperforms in the realm of print security, providing robust protection from the moment a document is printed till its final disposition. - Never underestimate the importance of physical document security—it is as paramount as your online and network defences in today's interconnected world. Is your organization's printing security sufficient to face modern challenges? Elevate your defense with Espria. #AdvancedPrintingSecurity #ComplianceEase #DocumentSafeguard #CyberResilience #InformationProtection

As manufacturing innovation pushes boundaries and neutral CAD files cross countless borders—between devices, networks, partners, and countries—IP protection becomes more challenging than ever. Seclore’s data-centric security keeps your neutral CAD files secure and compliant, embedding encryption, access control, and visibility directly into each file. Read our blog to learn how Seclore empowers manufacturers to collaborate securely and protect their IP worldwide: https://lnkd.in/gQh4RQRf #DataSecurity #Manufacturing #Manufacturers #SupplyChain #SupplyChainSecurity #CAD

Font issues aren’t just a creative problem; they also affect your IT, security, and overall digital experience. Without a proper governance strategy in place, you risk inconsistent branding, malware, legal issues, and slower website or app performance. Monotype offers a centralised solution to manage fonts, providing real-time visibility, reducing security threats, and ensuring faster, smoother digital experiences. By streamlining font usage and keeping your assets up to date, you safeguard your brand’s reputation and future-proof your digital presence.

As Sales & Marketing Ops Manager since 2018, Kathleen keeps our team running smoothly with her “Swiss Army knife” skills—managing everything from sales support to collections. Her favorite part? The variety and impact she gets to make every day! Outside of work, she’s a beachcomber and artist, creating jewelry from sea glass she collects worldwide. Follow along to learn more about the incredible people who make Converge Design thrive! #CAD #solidworks #solidworks_modeling #solidworks_design #ConvergeDesign #CloudSolutions #SaaS #CADsoftware #Engineer #IT #ComputerAidedDesign #PDM #ProductDataManagement #CyberSecurity #CyberSecuritySolutions

🔐 Cybersecurity Meets 3D Design: Bridging Two Worlds! 🛠️💻 As a cybersecurity enthusiast, I’m always exploring innovative ways to combine technology and creativity. Recently, I’ve ventured into the world of 3D design and prototyping with Fusion 360, and the results have been nothing short of amazing! 🚀 Imagine designing a hardware component that not only functions seamlessly but also plays a role in securing critical systems or enabling tech solutions. From conceptualizing intricate designs to prototyping functional parts, this journey has been a thrilling intersection of creativity and precision. 🎥 Check out this video where cybersecurity meets hardware innovation! Whether it's creating physical prototypes for secure systems or contributing to groundbreaking projects, I’m excited about the potential this synergy holds. Would love to hear your thoughts, feedback, or experiences where two seemingly different fields come together to create something extraordinary. Let’s keep pushing boundaries! 🌟 #Cybersecurity #3DDesign #Fusion360 #Innovation #HardwarePrototyping

𝗥𝗲𝗺𝗶𝗻𝗴𝘁𝗼𝗻 𝗧𝗲𝗰𝗵𝗻𝗼𝗹𝗼𝗴𝘆 𝗟𝗮𝘂𝗻𝗰𝗵𝗲𝘀 𝘁𝗵𝗲 𝗡𝗲𝘄 𝗞𝗼𝗻𝗶𝗰𝗮 𝗠𝗶𝗻𝗼𝗹𝘁𝗮 𝗯𝗶𝘇𝗵𝘂𝗯 𝗶𝗦𝗲𝗿𝗶𝗲𝘀 𝗶𝗻 𝗣𝗼𝗿𝘁 𝗠𝗼𝗿𝗲𝘀𝗯𝘆 Read the full story here: https://lnkd.in/gwa9CHxg Remington Technology technology celebrated the launch of the new KONICA MINOLTA, INC. bizhub iSeries multifunction devices on Thursday 7th November in Port Moresby, featuring the latest in simplicity, security, and sustainability for business technology. Attended by valued customers, suppliers, and Konica Minolta representatives from Australia, the event highlighted the close, relationship between Remington Technology and Konica Minolta. The new Konica Minolta bizhub i-Series makes printing easier, safer, and more efficient with its latest upgrade. The advanced security features include Authentication Attack Detection to block hacking attempts and optional BitDefender anti-virus to guard against malware, with alerts sent to administrators if a threat arises. The i-Series also offers a smartphone-like interface, where apps can be grouped for easy access. For businesses using Microsoft Azure or Google Workspace, single sign-on makes file access quicker. The i-Series boosts productivity too, with options for extra paper capacity and Automatic Media Detection on select models, making it easy to handle different types of paper for smooth, high-quality printing. Navin Raju, CEO of Remington Group, expressed his pride in the launch: “At Remington, we strive to deliver technology that meets the evolving needs of our clients. Partnering with Konica Minolta to bring the new bizhub iSeries to Papua New Guinea is part of our mission to offer smarter, more secure, and environmentally friendly solutions. With these new devices, we’re ready to help our clients tackle their challenges with greater ease and efficiency.” Dean Hosking, Chief Sales Officer for Konica Minolta Australia, added: “Our collaboration with Remington Technology and their outstanding performance as Dealer of the Year 2024 emphasizes our mutual commitment to driving business innovation. The bizhub iSeries represents a new standard in both simplicity and security, and we’re excited to support Remington’s efforts to bring these features to businesses across Papua New Guinea.” This launch further strengthens Remington’s long-standing partnership with Konica Minolta and highlights its dedication to supporting PNG’s business community with innovative and sustainable technology solutions.

ICYMI: Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution: Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution. Adobe is a software that is used for creating and publishing a wide variety of contents including graphics, photography, illustration, animation, multimedia, motion pictures and print. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights #cyber #cybersecurity #informationsecurity #management #cyberjobs #cto #cloud #ciso