From http://2mw.mcafee.com/2minutebroadcast.asp
USB Sticks Used to Expose, Steal Sensitive Data
Researchers
at MWR InfoSecurity report that USB sticks have been found to contain a
serious security flaw that could be exploited to computers around the
world. The British firm says that the flaw could allow the creation of
USB sticks that “interrogate a computer and download the contents”.
“What
millions of us have seen in countless James Bond and other spy
thrillers around the world has now taken a step closer to being
realized,” said Alex Fidgen, commercial director at MWR InfoSecurity.
“The bad guy plugging a small device into the system and removing
sensitive data is no longer theoretical. It is possible.”
Criminals
could exploit a flaw in the driver software of USB devices to take
control of systems and steal information. “Hackers are becoming more
and more sophisticated, and business is under threat. Up until now
people have felt secure in the knowledge that a simple USB stick could
not copy their information without their permission. We have proved
that it is not the case,” Fidgen said.
MWR
claims that it has already cracked one operating system using its
tools, and is now turning its attention to others. Fidgen added that
the researchers built the hack to raise awareness of the security
issues, and have shared their findings with the U.K. government’s Centre for the Protection of National Infrastructure.
Leave a Reply
You must be logged in to post a comment.