According to an article posted Friday in Wired magazine, USB thumb drives aren't just handy ways to move files and information from place to place, they're also a massive security threat due to a fundamental flaw in their design.
A team of security researchers apparently created a malware program called BadUSB that, they say, proves that the fundemantal security features of every USB drive are effectively worthless, allowing the user to effectively take over a PC just by inserting the infected USB stick into it.
"These problems can't be patched," one of the researchers told Wired. "We're exploiting the very way that USB is designed."
Fun!
They say there's no way to fix the problem, short of eliminating USB drives from your daily life altogether, and there's a chance that other USB-based peripherals — including keyboards, mice and smartphones — might offer the same vulnerability.
Clearly, in terms of corporate security and risk, this can of worms is just opening up.
Want to continue reading?
Become a Free PropertyCasualty360 Digital Reader
Your access to unlimited PropertyCasualty360 content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Breaking insurance news and analysis, on-site and via our newsletters and custom alerts
- Weekly Insurance Speak podcast featuring exclusive interviews with industry leaders
- Educational webcasts, white papers, and ebooks from industry thought leaders
- Critical converage of the employee benefits and financial advisory markets on our other ALM sites, BenefitsPRO and ThinkAdvisor
Already have an account? Sign In Now
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.