[Aug 13, 2018]
Fax machines are still widely used by businesses and communications protocol vulnerability is leaving them exposed to cyberattacks.
Researchers have now highlighted this issue by demonstrating how newly-discovered vulnerabilities in fax communications protocols can be used to compromise both enterprise and consumer networks.
The researchers demonstrated the existence of the security flaws in the HP Officejet Pro All-in-One fax printer range; specifically, the HP Officejet Pro 6830 all-in-one printer and OfficeJet Pro 8720.
Fax numbers are easy to find simply by browsing a corporate website or requesting the information directly — and this is all that is needed to exploit the new bugs. When this number has been acquired, attackers can send a malicious, crafted image file by fax to a potential victim.
If malware is loaded into memory and fax machines are connected to networks, malicious code has the ability to spread and compromise additional systems, potentially leading to espionage, service disruption, or information exfiltration.
Cyber Security Tips:
- Users are Highly Recommended to Patch or Upgrade (Whether it is Firmware or Software) of theirs Fax Machines as provided by Vendor.