IT Baseline Protection Manual - The Information Warfare Site

Threats Catalogue Deliberate Acts Remarks
____________________________________________________________________ .........................................
T 5.30 Unauthorised use of a fax machine or fax
server
Unauthorised access to a fax machine or fax server can be exploited for
manipulative purposes. On top of the cost of fax transmissions (charges and
consumables), loss or damage could also result from an unauthorised person
using the device under false pretences (sending out letters bearing the
company letterhead from the corresponding fax connection).
Steps must also be taken to ensure that unauthorised persons cannot access
incoming fax transmissions.
Examples
- A fax machine is situated in the corridor so that anybody walking by can
read or help himself to faxes unchecked.
- The access authorisations to stored fax data on a fax server are set
incorrectly so that unauthorised persons can read other people' faxes.
____________________________________________________________________ .........................................
IT-Baseline Protection Manual: Oktober 2000