Slashdot Mirror

← Back to Stories (view on slashdot.org)

25% of Worms Spread Via USB

Posted by CmdrTaco on from the to-your-mom dept.

An anonymous reader writes "In 2010, 25 percent of new worms have been specifically designed to spread through USB storage devices connected to computers, according to PandaLabs. This distribution technique is highly effective. With survey responses from more than 10,470 companies across 20 countries, it was revealed that approximately 48 percent of SMBs (with up to 1,000 computers) admit to having been infected by some type of malware over the last year. As further proof, 27 percent confirmed that the source of the infection was a USB device connected to a computer."

7 of 190 comments (clear)

  1. Surprise? by Joce640k · · Score: 5, Insightful

    It's only going to surprise people who thought nobody would be stupid enough to enable autorun by default in a consumer OS.

    --
    No sig today...
    1. Re:Surprise? by oodaloop · · Score: 4, Funny

      Oh, whoops! Was I standing on your lawn? Sorry 'bout that.

      --
      Tic-Tac-Toe, Global Thermonuclear War, and relationships all have the same winning move.
    2. Re:Surprise? by DavidTC · · Score: 5, Interesting

      Yes, but an equally useful thing would have simply been a 'Install program' menu item, that, when launched, looks on all removable media for autorun.inf files or whatever, and presents their devices, names, and icons in a little list where you pick one.

      Automatically running it was just stupid. You can automate systems but still put a menu item to start the process.

      Hell, in some cases, that would result in less steps. We've all had to walk someone through an install progress, and ended up first having to uninstall something else or update a driver and then reboot...at which point, to get autorun to work, they have to eject the damn CD and put it back in.

      --
      If corporations are people, aren't stockholders guilty of slavery?
  2. PS -- a little more googling shows... by mcgrew · · Score: 4, Informative

    If you're running Windows 7 it appears that you're ok. But what took MS so long to fix this gaping hole?

    --
    Free Martian Whores!
  3. Re:Big surprise by gstoddart · · Score: 4, Insightful

    Hm, software vendors put enormous effort into preventing attacks over the Internet. Did anyone really think that virus writers were not going to find new attack vectors?

    How is this a "new" attack vector?

    Microsoft has had auto-run on things like CDs and USB drives for years, and you usually need to turn it off. Otherwise, it would happily run any old shit you plug in without even asking.

    When I plug my iPad into my Vista box, the auto-run dialog comes up and asks me if I want to either download pictures or open it like a file storage. There is no "do nothing" option, which I find kind of amusing, since I've usually turned off auto-run for everything.

    I'm not even remotely surprised that USB is a popular attack vector -- they're the new floppies. Microsoft has defaulted to "easy" mode (run everything), which also happens to be the most trusting and dangerous mode you could get. I think this was kind of inevitable.

    --
    Lost at C:>. Found at C.
  4. Re:No, really? by TheRaven64 · · Score: 4, Informative

    I don't remember any worms spreading automatically via serial port. It would have been difficult, because there weren't many peripherals that had internal storage space and connected via RS-232, and computers connected with a null-modem cable typically had to run some custom software for file transfer.

    I do, however, remember a lot of worms spreading via floppy disks. Boot sector viruses were especially common in the DOS days. If you let a floppy in the drive, the BIOS would try to boot from it the next time you turned your computer on. It was quite common for a worm to install itself on the boot sector of any inserted floppy so that when you booted from that floppy it installed itself on the hard drive and then printed a 'please eject floppy and reboot' type error. You'd eject the floppy and reboot, and the machine would start normally, only now you'd be infected.

    Since USB drives have replaced floppy disks for offline file transfer, it's not surprising that this is a common attack vector.

    --
    I am TheRaven on Soylent News
  5. Re:I thought USB devices were safe by Ukab+the+Great · · Score: 4, Insightful

    Good News: Assuming a certain level of competence where the windows machines formatting the drives in China were not recycled from somewhere else, had their hard drives given a clean wipe, and weren't hooked up to the Internet and used to browse Pr0n on lunch break, then yes drives in the blister pack are secure.

    Bad News: It's highly dangerous to assume a certain level of competence.

    Moral Of The Story: When you buy a flash drive, immediately format it and bypass and "value-added gravy" the manufacturer tries to shove down your throat.