03 Oct BADUSB – AN UNPATCHABLE MALWARE THAT INFECTS USBS
2 months ago we saw that it’s possible to corrupt any USB device with insidious, undetectable malware.
The BadUSB attack was demonstrated at the Black Hat security conference by Karsten Nohl, and according to Nohl, the vulnerability is practically unmatchable. Due to the severity of the security problems and the lack of any easy patch the code was kept private.
But the code didn’t stay secret for long…
Researchers Adam Caudill and Brandon Wilson reverse engineered the same USB firmware, reproduced some of BadUSBs tricks and published the code on Github, forcing USB makers to fix the problem or run the risk of exposing millions of users to the attack.
Infected USBs can
– Impersonate the keyboard on victim’s machine to type any keystrokes the attacker chooses
– Hide files in the invisible portion of the code
– Silently disable a USB’s security feature that password-protects portions of its memory
Many would argue that publishing the code is irresponsible, while others would argue that it will speed up the security process to fix it and help to educate people on the potential dangers. There is currently no fix to this Malware, even deleting the contents of the USB’s won’t remove it so no matter what side of the fence you sit on we all agree that something needs to be done quickly.
- WHAT THE CEO IS READING – IMPROVING THE BUSINESS-TO-BUSINESS CUSTOMER EXPERIENCE - March 26, 2016
- WHAT THE CEO IS READING – LEADING AND GOVERNING THE CUSTOMER-CENTRIC ORGANIZATION - March 22, 2016
- WHAT THE CEO IS READING – MANAGE YOUR EMOTIONAL CULTURE - February 23, 2016
- WHAT THE CEO IS READING – GETTING TO SI, JA, OUI, HAI, AND DA - December 9, 2015
- 2 นาทีข่าวเทคโนโลยีประจำเดือนกันยายน - October 2, 2015
- 2 Minutes Of Tech. September’s News in 2 Minutes. - October 2, 2015
- PRINT YOUR OWN CROSSGUARD LIGHTSABER - September 22, 2015
- WHAT THE CEO IS READING – FOUR SEASONS: THE STORY OF A BUSINESS PHILOSOPHY - September 17, 2015
- 2 นาทีข่าวเทคโนโลยีประจำเดือนสิงหาคม - September 2, 2015
- 2 Minutes Of Tech. August’s News in 2 Minutes. - September 2, 2015