A security researcher has found nearly 700 Brother printers left exposed online, allowing access to the password reset function to anyone who knows what to look for. The printers offer full access to their administration panel over the Internet. Researchers plan to notify affected orgs and find out if the printers have a password to prevent unauthorized access. Brother printers are now easy discoverable via IoT search engines like Shodan or Censys. The race is on for NewSky and GDI researchers to notify as many affected organizations as possible.
Source: https://www.bleepingcomputer.com/news/security/hundreds-of-printers-expose-backend-panels-and-password-reset-functions-online/