NSA Develops USB Storage Device Detector

Hugh Pickens writes "Bob Brewin writes on NextGov that the National Security Agency has developed a software tool that detects thumb drives or other flash media connected to a network. The NSA says the tool, called the USBDetect 3.0 Computer Network Defense Tool, provides 'network administrators and system security officials with an automated capability to detect the introduction of USB storage devices into their networks. This tool closes potential security vulnerabilities; a definite success story in the pursuit of the [Defense Department] and NSA protect information technology system strategic goals.' The tool gathers data from the registry on Microsoft Windows machines (PDF) and reports whether storage devices, such as portable music or video players, external hard drives, flash drives, jump drives, or thumb drives have been connected to the USB port. 'I have a hunch that a bunch of other agencies use the detection software,' writes Brewin."

Two-part Epoxy

[GumphMaster]

In a certain secure environment I worked in there was a complete ban on use of the USB ports. We could have paid a bazillion dollars to have machines delivered without USB ports, spent many hours investigating bullet-proof ways to stop the USB ports from functioning in the OS, or simply fill the connectors with two-part epoxy. In the end the KISS principle ruled - epoxy and simple software tweaks on the off chance someone managed to free a port. :)