Black Hat conference attendees have recently been - or are about to be - told of significant vulnerabilities inherent in USB devices. The article at the URL leaves out much needed information.
Can users do anything to discover if their USB devices - especially thumb drives - are clean? If so, what steps should they take?
Can anyone point to specific manufacturer's whose devices are compromised?
Is there software or firmware that can be placed on USB devices to detect and prevent them being hacked?
Does anyone really know how great this threat is or what to do about it? It's great that there are people out there who are investigating these things and informing the industry and public, but what specific recommendations are there?
Black Hat Reports on USB Vulnerabilities
-
- UraniumLounger
- Posts: 9284
- Joined: 13 Feb 2010, 01:27
- Location: Deep in the Heart of Texas
Black Hat Reports on USB Vulnerabilities
Bob's yer Uncle
Dell Intel Core i5 Laptop, 3570K,1.60 GHz, 8 GB RAM, Windows 11 64-bit, LibreOffice,and other bits and bobs
(1/2)(1+√5) |
-
- Administrator
- Posts: 78474
- Joined: 16 Jan 2010, 00:14
- Status: Microsoft MVP
- Location: Wageningen, The Netherlands
Re: Black Hat Reports on USB Vulnerabilities
I don't think there are specific manufacturers whose products are compromised.
There is nothing to fear (probably) from the USB devices that you already have.
The common-sense advice near the end of the article sums up what you should do:
There is nothing to fear (probably) from the USB devices that you already have.
The common-sense advice near the end of the article sums up what you should do:
On a typical Windows system, USB devices are driven by drivers that are more often than not signed by software vendors. If a warning pops up on a user's screen to install a driver, or that an unsigned driver is present, that should be a cause for concern.
As a matter of best practice, don't plug unknown USB devices into your computing equipment. It's just common sense, much like users should not open attachments that look suspicious or click on unknown links.
Best wishes,
Hans
Hans
-
- Panoramic Lounger
- Posts: 8176
- Joined: 25 Jan 2010, 09:09
- Location: retirement
-
- Administrator
- Posts: 78474
- Joined: 16 Jan 2010, 00:14
- Status: Microsoft MVP
- Location: Wageningen, The Netherlands
Re: Black Hat Reports on USB Vulnerabilities
So, if it's not one thing, it's two threads
Locking this thread now.
Locking this thread now.
Best wishes,
Hans
Hans