Synaptics Denies HP Driver Contains a Keylogger and Says It’s a Debug Tool

Synaptics issued a security brief yesterday regarding the reports of a HP Synaptics Keyboard Driver that contained keylogging functionality.

In their security brief, Synaptics states that their driver is being mischaracterized as a keylogger and it’s simply a debug tool that was purposely added to the driver to help OEMs manufacturers debug their hardware.

According to Synaptics, this “feature” is present in all of their drivers being used by PC OEMs in production versions. So this appears to not only be localized to HP products but any notebook that utilizes Synaptics products.

Each notebook OEM implements custom TouchPad features to deliver differentiation. We have been working with these OEMs to improve the quality of these drivers. To support these requirements and to improve the quality of the experience, Synaptics provides a custom debug tool in the driver to assist in the diagnostic, debug and tuning of the TouchPad. This debug feature is a standard tool for all Synaptics drivers across PC OEMs and is currently present in production versions. This debug tool was turned off after production and prior to shipment. Synaptics believes now, for best industry practices, that it should remove this debug tool for production versions of the driver. Synaptics is unaware of any breach of security related to this debug tool.While the debug tool was put in place to help notebook manufacturers, it is important to remember that if something exists that can be used, people will try to abuse it. As new security vulnerabilities and exploits are released daily, debug features that can be exploited should not be left in software released for production.

If manufacturers need debugging tool to perform diagnostics on their hardware, then debug drivers should be shipped to them that are used for testing. These debugging functions should then be removed for production-ready drivers. Yes, this may make things more difficult, but it is also a much more secure method.

With that said, Synaptics has decided to remove the debug feature from their driver due to the “heightened concern for security and privacy” and have issued an apology.

Synaptics takes great pride in making sure that its TouchPad drivers and other products meet industry-best security standards. In our new normal of heightened concern for security and privacy, Synaptics would like to apologize for any concerns that our debug tool may have raised. We have a path to immediately address this issue and other security concerns should they arise.

As for whether a debug tool that monitors keystrokes could be considered a keylogger, I will leave that for you to decide.

Credit: Bleepingcomputer

Jai Prajapati

Jai Prajapati is a security analyst and author for Securityleaks, where he passion for covering latest happening in cybersecurity world such as malware, breaches, vulnerabilities, exploits, white-papers, hacking newsbytes, Dark Web, hacking tutorials and a few more.

Leave a Reply

Your email address will not be published. Required fields are marked *