Your laptop could be recording EVERYTHING you type: Sinister keylogging software that lets hackers spy on users is found on almost 500 models of HP computer
- Computer security expert Michael Myng was the first to expose the security flaw
- It is thought to affect 475 models of laptops with Synaptics Touchpad software
- The keylogger is disabled by default but hackers could use it to access your data
- HP has acknlowdged the bug and issued a patch to fix it via its website
Technology used by cyber criminals to gather sensitive information comes pre-installed on a range of laptops, it has been revealed.
Hundreds of models of notebooks sold by Hewlett Packard (HP) contain keystroke logging software, which captures everything that is typed on the device's keyboard.
The keylogger is disabled by default, but hackers could use it to access private details like passwords and pin numbers.
Scroll down for video
Technology used by cyber criminals to gather sensitive information comes pre-installed on a range of laptops, it has been revealed. Hundreds of models of notebooks sold by Hewlett Packard (pictured) were found to contain keystroke logging software
HP has created a website lets users check if your laptop is at risk.
Computer security expert Michael Myng was the first to expose the bug, in a blog post revealing the flaw.
It is believed to affect 475 models of HP laptops, including EliteBook, ProBook, ZBook, Envy and Pavilion versions, among others.
The keylogger is used by the Synaptics Touchpad software, which controls the touchpad user interface, and was designed to help monitor and repair any bugs it may contain.
Writing in his blog post Mr Myng said: 'Sometime ago someone asked me if I can figure out how to control HP’s laptop keyboard backlit.
'I asked for the keyboard driver, opened it and after some browsing noticed a few interesting strings.
'The logging was disabled by default but could be enabled by setting a registry value.'
HP has issued a patch via their website and Windows Update to remove the keylogger, which customers are advised to download, as well as a full list of models affected.
MailOnline has contacted the firm for a comment, but it had not replied at the time of publication.
HP acknowledged in its notes for the patch that the flaw could lead to 'loss of confidentiality' for affected customers, but that neither Synaptics nor HP had access to customer data as a result.
This is not the first time that HP laptops have been found to contain keylogging software.
Back in May, Swiss computer security consultancy ModZero found that 28 models of HP laptops come with keylogging software pre-installed.
The keylogger is used by audio drivers to determine when the up and down volume control buttons on the keyboard have been pressed.
But by storing the recorded details of every keystroke made in unencrypted plain text files, hackers or other third parties could access everything users have ever written.
The keylogger is disabled by default, but hackers could use it to access private details like passwords and pin numbers. HP has issued a patch via their website and Windows Update to remove the software, which customers are advised to download (stock image)
Owners of affected laptops should check for specific files installed on their systems, which ModZero recommended that you delete.
In a blog post written by ModZero, the firm said: 'There is no evidence that this keylogger has been intentionally implemented.
'Obviously, it is a negligence of the developers - which makes the software no less harmful.'
'Our supplier partner developed software to test audio functionality prior to product launch and it should not have been included in the final shipped version.
'Fixes will be available shortly via HP.com.'
Owners of affected laptops should check whether the program C:\Windows\System32\MicTray64.exe or C:\Windows\System32\MicTray.exe is installed.
ModZero recommends that you delete or rename the files so keystrokes are no longer recorded, although this may mean that the volume control buttons on affected laptops no longer work.
The file C:\Users\Public\MicTray.log file should also be deleted immediately according to the company, as it may also contain sensitive information like login-information and passwords.
Most watched News videos
- Moment fire breaks out 'on Russian warship in Crimea'
- Lords vote against Government's Rwanda Bill
- Shocking moment balaclava clad thief snatches phone in London
- Russian soldiers catch 'Ukrainian spy' on motorbike near airbase
- Shocking moment man hurls racist abuse at group of women in Romford
- Mother attempts to pay with savings account card which got declined
- Shocking moment passengers throw punches in Turkey airplane brawl
- Shocking footage shows men brawling with machetes on London road
- Trump lawyer Alina Habba goes off over $175m fraud bond
- Shocking moment woman is abducted by man in Oregon
- Brazen thief raids Greggs and walks out of store with sandwiches
- China hit by floods after violent storms battered the country