Slashdot Mirror

← Back to Stories (view on slashdot.org)

Social Engineering Using USB Drives

Posted by ryuzaki0 on from the driving-right-in dept.

Iphtashu Fitz writes "What's the easiest way to hack into the computer systems of a credit union? It turns out that all you need to do is copy a virus/trojan onto USB drives and scatter them around the front door of the credit union. This was how a recent security audit was performed at a credit union where the employees had actually been tipped off to the audit. Security experts collected 20 old USB thumb drives and filled them with images and other data along with a trojan that would collect sensitive information and e-mail it back to them. Early one morning they planted the thumb drives around the entrances to the credit union as well as other public places where the employees were known to congregate. In very little time 15 of the 20 USB drives were plugged into company computer systems and started e-mailing usernames, passwords, etc. back to the auditors."

6 of 447 comments (clear)

  1. It's definitely a problem... by Coopjust · · Score: 4, Informative

    Given autoplay and the fact that many USB keys do not need drivers, this could turn out to be a serious problem.

    Why not just disable USB keys? They don't need to take that data home with them...the ChoicePoint disaster, several laptops stolen out of cars... these companies need to make are personal data more secure.

  2. Re:Autoplay trojan? by TubeSteak · · Score: 4, Informative
    Even though you're joking, what you're proposing has been around for a looooong time.

    http://lastmeasure.com/
    Last Measure is a wholly owned subsidiary of the Gay Nigger Association of America

    The bastards at GNAA created LMOS (Last Measure OS)
    http://sam.zoy.org/lmos/
    LMOS is a minimalist operating system targetting multimedia presentations, written with simplicity in mind. Due to its tiny x86 assembly core, it easily fits on a standard floppy: just write LMOS and your pictures to a CD or floppy, and it will boot and play on any IBM-PC compatible computer.

    LMOS is a handy tool to carry with you on a business card CD or an USB key. Also, instead of luring people to Last Measure mirrors or similar shock sites, you can simply hand them an LMOS CD with a "Knoppix" sticker on it.
    No matter what depravity you can think of, the Trolls have already been there and raped that idea.
    --
    [Fuck Beta]
    o0t!
  3. Re:But.. How? by EvilSS · · Score: 4, Informative

    That is 100% incorrect. USB drives (and ANY removable drive including usb/firewire hard drives) can be used for autorun. Most likely the reason the parent could not get it to autorun is because autorun had been turned off.

    If you want a great example of autorun look at Pass2Go from the Roboform guys. It sets up autorun on the USB drive it is installed on. The Microsoft wireless network setup wizard (the one the also exports the WEP/WPA keys of an existing connection on an XP machine as plain text) also sets up a USB key to autorun the wizard.

    --
    I browse on +1 so AC's need not respond, I won't see it.
  4. The word from Microsoft on autorun for nerdsticks by Beryllium+Sphere(tm) · · Score: 5, Informative

    The Autorun capabilities are restricted to CD-ROM drives and fixed disk drives. If you need to make a USB storage device perform Autorun, the device must not be marked as a removable media device and the device must contain an Autorun.inf file and a startup application.

  5. You have to hack the USB drive itself. by khasim · · Score: 5, Informative

    The hardware itself reports whether it is removable or not.

    If you flip one of the bits, then it will auto-play just like a CD.

    http://en.wikipedia.org/wiki/SCSI_Inquiry_Command

    It's the "removable medium" setting.

  6. Re:autorun.inf doesn't work by Slayback · · Score: 5, Informative

    Windows XP SP2 changed this behavior and will use the autorun.inf file to autorun. I use this everyday to have Truecrypt automatically pop up to mount my encrypted volume on my USB drive.