Security flaw in memory sticks uncovered
USB sticks harbour a major security flaw that could put millions of computers at risk, warns MWR InfoSecurity.
The company claims that it will soon be possible – James Bond style – to simply plug a device in the back of computer and quickly copy the entire hard drive of a computer. The problem stems from a major security flaw in the USB driver software, which enables the computer to interact and talk to the device when plugged in.
“Until recently, it was thought that this software was reasonably secure. We have proved that it is not and have developed technology that could easily be incorporated into any USB device,” said MWR InfoSecurity’s Alex Fidgen.
The company developed the device to highlight the potential risks to UK companies of security risks and help UK firms stay one step ahead of threats.
It has shared the information with the Government’s Centre for the Protection of National Infrastructure to ensure that manufacturers and developers can address the problem before the details are made public.