!!

Welcome Guest

You are viewing this forum as a guest therefore You are Not Allowed to Post and Reply and You are not allowed to view links. Register or Login

collapse

* Search


* Recent Replies

Think About This... by [Not Shown, Login to View]
[Yesterday at 01:59 PM]


Latest on Google AdSense by [Not Shown, Login to View]
[Yesterday at 09:38 AM]


The Spirit of the Living God by [Not Shown, Login to View]
[May 22, 2018]


How to use facebook in driving traffic by [Not Shown, Login to View]
[May 19, 2018]


How to Start Bulk SMS Website by [Not Shown, Login to View]
[May 18, 2018]


Error 404 Fixing by [Not Shown, Login to View]
[May 16, 2018]


Use Adsense Code on Subdomains by [Not Shown, Login to View]
[May 14, 2018]


Help on how to send bulk emails by [Not Shown, Login to View]
[May 10, 2018]


Modern SEO Guide by [Not Shown, Login to View]
[May 10, 2018]


Ways Of Improving Your Memory by [Not Shown, Login to View]
[May 10, 2018]


I am interested in bulk SMS business by [Not Shown, Login to View]
[May 09, 2018]


Content for website or Facebook fan page?? by [Not Shown, Login to View]
[May 09, 2018]


amazon afiliation registration by [Not Shown, Login to View]
[May 09, 2018]


Creation of Ads in Adsense by [Not Shown, Login to View]
[May 09, 2018]


How To Get Google Adsense Approval Fast by [Not Shown, Login to View]
[Apr 30, 2018]


Adsense Account by [Not Shown, Login to View]
[Apr 29, 2018]


HTML code for Menu Buttons by [Not Shown, Login to View]
[Apr 24, 2018]


Facebook ban or Not? What to do? by [Not Shown, Login to View]
[Apr 23, 2018]


Tips to Get an Approved Adsense Account by [Not Shown, Login to View]
[Apr 17, 2018]


I am unable to see and edit published Post on my blog back end by [Not Shown, Login to View]
[Apr 16, 2018]


Areghan method on keyword research by [Not Shown, Login to View]
[Apr 16, 2018]


New Facebook Page by [Not Shown, Login to View]
[Apr 10, 2018]


PPC ads for News Website by [Not Shown, Login to View]
[Apr 01, 2018]


Wordpress Featured Image by [Not Shown, Login to View]
[Mar 31, 2018]


"Add To Cart" and "Ordered Items" by [Not Shown, Login to View]
[Mar 29, 2018]


Clicks on Amazon by [Not Shown, Login to View]
[Mar 26, 2018]


Having Issues With The Latest version of the Google Keyword Planner by [Not Shown, Login to View]
[Mar 24, 2018]


Amazon and Bing ads by [Not Shown, Login to View]
[Mar 12, 2018]


Webhost purchase by [Not Shown, Login to View]
[Feb 27, 2018]


Best hosting platforms by [Not Shown, Login to View]
[Feb 06, 2018]

Author Topic: USB Has a FundamentalSecurity Flaw That YouCan't Detect  (Read 375 times)

0 Members and 1 Guest are viewing this topic.

Offline [Not Shown, Login to View]

  • Level 3 (Regular)
  • ***
  • Posts: 216
  • Respect: +28
  • Gender: Male
  • Location: abuja
  • My Rank: 22
We all rely on USB to interconnect our digital lives
—-but new research first reported by Wired
reveals that there's a fundamental security flaw in
the very way that the humble Universal Serial Bus
functions, and it could be exploited to wreak havoc
on any computer.
Wired reports that security researchers Karsten
Nohl and Jakob Lell have reverse engineered the
firmware that controls the basic communication
functions of USB. Not only that, the've also written
a piece of malware, called BadUSB, that can "be
installed on a USB device to completely take over a
PC, invisibly alter files installed from the memory
stick, or even redirect the user's internet traffic."
Embedded within USB devices—from thumb drives
thorough keyboards to smartphones—is a
controller chip which allows the device and a
computer it's connected to send information back
and forth. It's this that Nohl and Lell have
targeted, which means their malware doesn't sit in
flash memory, but rather is hidden away in
firmware, undeletable by all but the most
technically knowledgable. Lell explained to Wired :
"You can give it to your IT security people,
they scan it, delete some files, and give it
back to you telling you it's 'clean... [But
these] problems can't be patched. We're
exploiting the very way that USB is
designed."
The kicker is that it's virtually impossible to check
whether a device's firmware has been tampered
with, and even if it was, there's no single trusted
version of it to check against. It's also worth
pointing out that it can travel both ways: a USB
stick could infect a computer with its malware, say,
and the PC could then infect any USB device
plugged into it.
So it's fairly worrying that the pair of researchers
have demonstrated—and will present at the
upcoming Black Hat security conference in Las
Vegas—that the flaw can be exploited on thumb
drives, mice, keyboards and even an Android
smartphone. (It should, in theory, work on any
USB device that can have its firmware
reprogrammed). Some of Wired's sources even
speculate that the hack could already be being used
by the NSA.
That's a lot of bad news—so what can you do
about it? Technically speaking, very little: there's
no patch of code that can be be used to solve the
problem. Instead, both the USB Implementers
Forum and the researchers point out that a change
in the way we use USB is the only solution: don't
plug a USB device into any computer you don't 100
percent trust, and don't plug untrusted USB device
into your computer either. That may prove
inconvenient—but it may also save you from a
very nasty surprise, too


moving to greater height

 

Related Topics

  Subject / Started by Replies Last post
7 Replies
1324 Views
Last post Apr 26, 2014
by [Not Shown, Login to View]

TinyPortal © 2005-2011
SimplePortal 2.3.5 © 2008-2012, SimplePortal