Fax/Scan Phishing Attacks Jump Nearly 500% as Workers Return to the Office

Fax/Scan Phishing AttackThe bad guys take advantage of any major event as the source of a new phishing campaign. According to new data from Avanan, this latest campaign aligns with heading back to the office.

Remember those copiers and scanners you have in the office? The ones nobody has touched in the last 14 months? Those are the impetus for a new phishing campaign centered around users returning to the office. According to security vendor Avanan, the number of fax/scan-related phishing emails has jumped significantly in May.

According to their data, January through April of this year saw just over 53K phishing emails using a request for the recipient to review a fake fax or scan, complete with a malicious link. This represents around 13K emails using this kind of theming per month that look similar to the one below.

image (60)-png








Source: Avanan

But in May alone, that number spiked to 65K – a 500% increase, aligning perfectly with many businesses issuing “return to work” orders to their employees.

As you bring your users back to the office, it may also be time to improve the state of your cybersecurity by enrolling them in continual Security Awareness Training that educates them on these and other themes of phishing attacks, keeping your employees abreast of the latest scams and social engineering tactics to help keep themselves and the organization safe from cyberattack.

Free Phishing Security Test

Would your users fall for convincing phishing attacks? Take the first step now and find out before bad actors do. Plus, see how you stack up against your peers with phishing Industry Benchmarks. The Phish-prone percentage is usually higher than you expect and is great ammo to get budget.

PST ResultsHere's how it works:

  • Immediately start your test for up to 100 users (no need to talk to anyone)
  • Select from 20+ languages and customize the phishing test template based on your environment
  • Choose the landing page your users see after they click
  • Show users which red flags they missed, or a 404 page
  • Get a PDF emailed to you in 24 hours with your Phish-prone % and charts to share with management
  • See how your organization compares to others in your industry

Go Phishing Now!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:


Topics: Phishing

Subscribe To Our Blog

Cybersecurity Awareness Month Resource Kit

Get the latest about social engineering

Subscribe to CyberheistNews