Search
Close this search box.

Researchers publish details of fax machine hack

Table of Contents

Don’t fall victim to the latest fax machine hack

Does your fax machine connect to your corporate network? If so, you may be leaving your business vulnerable to cyber-attacks via a fax machine hack. This fax machine hack has emerged from the Def Con hacker conference – an annual gathering of cybersecurity experts.

Fax machines are still in widespread use, often combined with copiers and printers. Therefore, they are network-connected, leaving millions of companies exposed to malicious payloads such as ransomware or virus outbreaks, which could cripple corporate networks and bring productivity to a standstill – potentially costing businesses huge amounts of money. All cybercriminals need to do is send you a fax with malicious code in it to secure a foothold on your network for wider cyber-attacks.

It is hoped that now the vulnerability is being widely publicised, companies will take measures to reduce their risk by implementing more thorough cybersecurity measures – however, the other side of the coin is that malicious hackers will also be aware of the fax machine hack now, and will seek to profit by attacking those businesses with fax machines and weak cybersecurity.

Calculating your risk profile: the good news.

It’s fairly easy to establish your business’ risk regarding this particular vulnerability. The good news is that there is (so far) no evidence that malicious hackers are able to exploit the vulnerability to penetrate businesses with well-defended networks. If you have strong network security measures in place, you are significantly less vulnerable to this fax machine hack than businesses with poor network security.

Good network security means an enterprise-grade Internet router with robust, up-to-date, inbuilt security measures, and effective endpoint security deployed across all machines.

Fax Machine Hack, Fax Machine Hack Blog

Calculating your risk profile: the bad news

The bad news for businesses without these measures in place is that you are inherently at risk. It is even more dangerous now the fax machine hack has been widely publicised in the global media. An inevitable side-effect of publicising security vulnerabilities so that they can be addressed is that malicious hackers will jump on the bandwagon to exploit them whilst the security loopholes remain open.

Fax has no security measures built in – it was created in a time before cybersecurity was a concern for manufacturers, and has remained that way since. As a result, the fax machine serves as a gateway to your network for attackers. This can lead to cyber-attacks against your business.

Furthermore, if your fax machine number is openly displayed on your company website, an attacker could quite easily use that number to deliver the malicious code and infiltrate your network. Neuways examined an extensive sample of businesses and found that 57% had their fax number displayed on their website, potentially leaving them open to immediate attack.

The solutions to the problem

Removing your fax number from your website or getting rid of your fax machine entirely is not the way to protect yourself from this threat. Removing your fax number from your website is a half-hearted measure; it can still be acquired relatively easily via social engineering. Getting rid of your fax machine altogether is a drastic measure that could inconvenience your business, your customers and your suppliers. Instead, make sure that fax machine is patched to the latest firmware version.

This fax machine hack should be of no concern to businesses with adequate cybersecurity. Unfortunately, the reason that this fax machine hack vulnerability is so newsworthy is that cybersecurity, across the millions of companies still using fax machines, is so poor.

A multi-layered defence is the best way to protect yourself from this threat and many more just like it. This encompasses an enterprise-grade Internet router with network segmentation and a properly configured firewall. This protects your network from cyber-attacks and infiltration. In addition, you may want to consider deploying endpoint security, which secures your devices within your network.

If you’re still unsure about whether this threat is endangering your company, or whether or not you have the adequate security infrastructure in place, speak to Neuways. We can secure your network and ensure you’re not unnecessarily risking your business’ future.

Want to keep up with our blog?

Get our most valuable tips right inside your inbox, once per month!

Latest IT News & Insights
Microsoft Dynamics 365 Business Central Main Product Mockup Showcase ERP
Why Business Central enhances and streamlines solutions
See how Microsoft Dynamics 365 Business Central enhances business solutions and streamlines the processes...
Read More
Neuways artificial intelligence
Artificial Intelligence: The Good, The Bad & The Ugly
AI is the Marmite of the IT world. Love it or hate it, the reality is it filters into our everyday lives...
Read More
Choose Neuways for your IT Support, Cyber Security and Business Central needs.
Cyber Security Acronyms Part 1: Neuways
We are helping clients to understand cyber security. We're making it easy for you, as we are jargon busting...
Read More
Password Manager and Security with neuways
Password Managers just became an even more important tool for Employees
The Government has brought in a ban on employees and manufacturers using default passwords.
Read More
Dark Web monitoring
What is the Dark Web?
Dark Web Monitoring identifies whether any of your company data (including login credentials and confidential...
Read More
Password Manager and Security with neuways
Password Security
Business Password Manager Tool Protect your remote workforce with Password Manager Tool, the business...
Read More
WatchGuard WiFi Security
WatchGuard User Services Platform – Simple, Secure and Intelligent WiFi
Why do Neuways partner with WatchGuard? Find out below to see how we improve the cyber security of your...
Read More
Endpoint Security
Endpoint Security
Protect your business with the best in Endpoint Security – How Neuways can help you Protect Your...
Read More

Frequently Asked Questions

Managed IT support is a comprehensive solution where an expert IT provider, like Neuways, handles your technology infrastructure. This includes proactive monitoring, maintenance, cyber security, and support.

Contact us

Support: 01283 753300

Business Development: 01283 753333

Purchasing: 01283 753322

Admin and Accounts: 01283 753311

Email: hello@neuways.com

Yes we do. Your business needs Cyber Security due to the increasing number of cyber threats that are affecting businesses in all industries. If your business has data and technology systems implemented, you will need Managed Cyber Security.

Yes we can. We have our own dedicated Microsoft Dynamics 365 Business Central teams who work to ensure that we can implement the right systems and solutions into your website that are absolute right for you. 

Got a question?

Reach out
& Connect

Please enable JavaScript in your browser to complete this form.
Name