Your IT Consultant

Beware Unexpected USB Flash Drives

January 11, 2022

It’s an oldie but a goodie. Beware the postman bearing gifts. Bleeping Computer has a warning from the FBI to beware of USB drives showing up in the mail. Apparently, the FIN7 cybersecurity group is delivering malware via USB drives. All you have to do is insert the USB drive in your computer to get infected. No other user action is needed. Essentially, there is code on the USB drive that “automatically registers as a Human Interface Device (HID) Keyboard (allowing it to operate even with removable storage devices toggled off).” The drive then acts like a keyboard and executes commands just like a human typing on a physical keyboard.

This capability has existed for years. For $50 you can buy a USB Rubber Ducky from Hak5 that does the same thing as the malware-laden devices being shipped by FIN7. The lesson here is to NOT insert any foreign USB device in your computer. If you find a flash drive on a park bench or parking lot, human nature is to try and find out what is on the device or who the owner may be. Avoid the temptation.

Email:   Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology
https://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
https://senseient.com