topic Re: Fax attack! in Industry News

Fax attack!

rslade — Mon, 09 Oct 2023 08:53:50 GMT

When I was doing virus research we were forever getting reports of malware hidden in graphics files. Aside from the fact that it is trivially easy to embed anything in a Microsoft OLE format file, we generally found that such reports were unfounded: it's just not that easy to put malware into graphics. (Not impossible, mind, just not that easy.)

(After a while we tended to file such reports along with hoax viruses and metaviruses.)

And, lots of people have had questions about faxes over time.

Turns out that a combination of poor fax protocols (made at a time when fax machines had no other functions) plus the implementation of fax into machines that are computerized mean that you can now craft malicious fax transmissions that will compromise a fax machine. And, possibly, the network to which it is connected.

Re: Fax attack!

DAlexander — Tue, 14 Aug 2018 02:17:20 GMT

Reminds me of a proof of concept I read once where copy machines were exploited through a poorly secured process that was designed to send maintenance and supply information to the vendor. The technical details were interesting but I found the scenario business case interesting as well.

Company X and Company Y are in competition for a lucrative contract. Both have proposals to the potential customer in the near future. Y exploits the vulnerability in X's copy machine weeks prior to the proposal and programs it to secretly forward digital copies of whatever is scanned by X's machine to Y's proposal development team as valuable intelligence. Then, to further sabotage their victim, Y inserts code to cause X's machine to overheat, begin smoking, and set off the fire sprinklers thereby causing X to miss their proposal.

Re: Fax attack!

Caute_cautim — Tue, 14 Aug 2018 07:12:26 GMT

It is very relevant subject indeed:

https://faxauthority.com/glossary/black-fax/

https://www.theinquirer.net/inquirer/news/3061034/fax-machine-flaw-leaves-tens-of-millions-of-devices-open-to-attack

https://www.computerweekly.com/news/252446742/Millions-of-businesses-vulnerable-to-fax-based-cyber-attack

https://www.bbc.com/news/technology-45083774

A very interesting subject, has it been proven in the field or it just a Black Hat conference item?

Regareds

Caute_cautim

Re: Fax attack!

Caute_cautim — Thu, 16 Aug 2018 20:59:50 GMT

Additional information:

https://blog.checkpoint.com/2018/08/12/faxploit-hp-printer-fax-exploit/?utm_source=newsletter&utm_medium=email&utm_campaign=cpnewsletter-18q3-8-15&utm_content=18q3-8-15-faxploitblog&mkt_tok=eyJpIjoiTWpRd1ltRTJOemswWlRobCIsInQiOiJiQnJDeVlUV0l6NTRWRE9CQWFWV2RPY09SS1dhbTVyU1wvbjZYSFEzQUFtMTRiVkdLOWt5ZTBEVUtpXC8wT1VCTzhOY3VmSitBWUhMNnZCd1wvUEtyempBXC9uT3ZoMFwvR01kY0RhYmR3Kzg0d0ZJcjJBWkdtNU5oOEtBdjc0Q1VySjRtIn0%3D

Interesting read, a bit like Bruce Schneier's law:

"The term Schneier's law was coined by Cory Doctorow in a 2004 speech. The law is phrased as:
Any person can invent a security system so clever that he or she can't imagine a way of breaking it. "

Caute_cautim