In today’s day and age, caution surrounding USB devices is becoming more and more prevalent. This is due to the dangers of what could be stored on the device. USB devices are extremely cheap, portable, and popular among cybercriminals. Attackers use USB devices to infect other computers with malware which will download malicious code onto the device when plugged into a computer. This type of attack is typically referred to as a “USB drop attack”. It is also recommended to restrain from lending or allowing anyone else to use your USB devices, as they may inadvertently compromise the USB with some form of malware that can spread to your device when returned.
Cybercriminals rely on the victim’s curiosity to plug in and access what type of content is on the device, this method is generally very effective. To encourage the victim even further, they will name the file something relating to confidential data, such as “HR files”. The best way to protect from a USB drop attack or any other type of attack involving a USB drive is simply to never trust an unknown USB drive.
Using a USB to infect a device is one thing, but what other potential harm can be caused by these devices?
Ecuadorian Attack
Five Ecuadorian journalists have recently become the target of “USB thumb drives rigged with military-grade explosive charges”. These booby-trapped devices were sent out with enticing instructions for the victims to connect the USB to their computer to view its content. Once connected to the device, the idea was that the voltage would ignite the explosive. Thankfully, only one of these USB devices ignited (only half of the USB ignited) and there were no major injuries.
Computer users should always beware of unsolicited, found, or left-behind USB drives. While an explosive USB is a very extreme and uncommon scenario, plugging in an unknown USB drive is risky and can lead to the compromise of your device, accounts, and identity.
Sources:
Recent Comments