The article goes on to say that it is, in fact, true.
>HP has long banged the drum [PDF] about the potential for malware to be introduced via print cartridges, and in 2022, its bug bounty program confirmed that third-party cartridges with reprogrammable chips could deliver malware into printers.
>>jjuliu+(OP)
It seems that they had no incentive to prevent malware, as its existence could be used to make customers buy their ink instead. I wonder if they fixed this bug at all after the exploit was found.