Why fax machines pose a major cybersecurity risk
Researchers say hackers can upload malware to networks using ‘specially created’ image files

A free daily digest of the biggest news stories of the day - and the best features from our website
Thank you for signing up to TheWeek. You will receive a verification email shortly.
There was a problem. Please refresh the page and try again.
Security experts have warned companies and homeowners using fax machines that they may be at risk of falling victim to cybercrime.
A study by US-based cybersecurity advisers Check Point Research found an exploit in printers with built-in fax machines whereby criminals could “infiltrate any home or corporate network” with just a fax number.
The so-called faxploit occurs when hackers send a “specially created image file” to a fax number, which is then “automatically decoded and uploaded” to the printer’s internal memory, reports the Daily Mirror.
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.

Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
If hackers programme the files to contain malware, the disrupting software “takes over the device and can spread to any network the fax-printer is connected to”, the newspaper explains.
According to tech news site VentureBeat, Check Point researchers were able to replicate the security loophole on a Hewlett-Packard (HP) printer-fax machine. This prompted HP to issue a fix in the form of a firmware update for its fax-enabled devices.
However, many products have not been updated to close the loophole.
Although fax is considered an ageing technology, around 45 million printer-fax machines are still used worldwide, the London Evening Standard reports.
The NHS alone uses 9,000 fax machines - which is “particularly worrying” given that the health service handles “vast amounts of highly sensitive personal data” using the technology, the newspaper adds.
Yaniv Balmas, a researcher at Check Point, told the BBC that fax security systems were “standardised in the 1980s and have not been changed since”.
“Fax has no security measures built in, absolutely nothing,” he said.
Speaking to Wired, Check Point’s Eyal Itkin said that the best way to prevent a fax cyberattack is to stop using the technology altogether.
If that’s not possible, he recommends segregating printers by putting them on “a separate network”.
“So even if someone takes over the printer, they won’t easily be able to propagate into the main network”, Itkin concludes.
Continue reading for free
We hope you're enjoying The Week's refreshingly open-minded journalism.
Subscribed to The Week? Register your account with the same email as your subscription.
Sign up to our 10 Things You Need to Know Today newsletter
A free daily digest of the biggest news stories of the day - and the best features from our website
-
Consumption rooms: a legal place for illegal drugs?
Talking Point Scotland approves UK's first trial facility where users can take drugs under medical supervision
By Richard Windsor, The Week UK Published
-
'Biden must be embarrassed he didn't think of this first'
Instant opinion Opinion, comment and editorials of the day
By Harold Maass Published
-
'Suella Braverman went to Washington to talk tough… in an empty room'
Opinion, comment and editorials of the day
By The Week Staff Published
-
How cybercriminals are hacking into the heart of the US economy
Speed Read Ransomware attacks have become a global epidemic, with more than $18.6bn paid in ransoms in 2020
By The Week Staff Last updated
-
Language-learning apps speak the right lingo for UK subscribers
Speed Read Locked-down Brits turn to online lessons as a new hobby and way to upskill
By Mike Starling Published
-
Brexit-hobbled Britain ‘still tech powerhouse of Europe’
Speed Read New research shows that UK start-ups have won more funding than France and Germany combined over past year
By Mike Starling Published
-
Playing Cupid during Covid: Tinder reveals Britain’s top chat-up lines of the year
Speed Read Prince Harry, Meghan Markle and Dominic Cummings among most talked-about celebs on the dating app
By Joe Evans Last updated
-
Brits sending one less email a day would cut carbon emissions by 16,000 tonnes
Speed Read UK research suggests unnecessary online chatter increases climate change
By Joe Evans Published
-
Reach for the Moon: Nokia and Nasa to build 4G lunar network
Speed Read Deal is part of the US space agency’s plan to establish human settlements on the lunar surface
By Mike Starling Last updated
-
iPhone 12 launch: what we learned from the Apple ‘Hi, Speed’ event
Speed Read Tech giant unveils new 5G smartphone line-up
By Mike Starling Last updated
-
Russian hackers again targeting US election, Microsoft warns
Speed Read Tech giant claims Kremlin-backed group is trying to infiltrate Donald Trump and Joe Biden campaigns
By Gabriel Power Last updated