The Honey Stick Project

Over 40% of people who find USB Drives put their computers at risk by plugging them in... Your staff could be one click away from bringing down your operational information systems.

Click on the Results link below for more stats from this study.

No time or budget for security? Try visiting The Streetwise Security Zone by clicking HERE to join the movement for empowering teams with Governance by Graffiti - a way to drive information security according to your business needs.

You can follow Scott Wright on Twitter at http://twitter.com/streetsec

Search the Site

search site archives

Associates

Articles by Month

Stories about Mobile Storage Device Security

Posted in Stories about Mobile Data Risks by Administrator on the February 24th, 2008

Since this site is dedicated to researching and educating people about security and privacy risks, issues and solutions, I wanted to have a place to allow for stories, anecdotes and comments, primarily about Mobile Storage Devices such as USB Memory Drives, Digital Cameras, MP3 Players, Digital Picture Frames, PDAs, Phones, and even Laptops. I prefer verifiable stories and case studies, but even hypothetical situations may be discussed here.

Examples I will start with include some of the case studies I’ve already posted on the Security Views website (click HERE).

Please remember that you should not disclose private or confidential information that is not already in the public domain.

2 Responses to 'Stories about Mobile Storage Device Security'

Subscribe to comments with RSS or TrackBack to 'Stories about Mobile Storage Device Security'.

Administrator said,

on February 24th, 2008 at 9:01 am

The Cyber Bag Lady

This was a general discussion article on discarding old devices that may still have data on them, which could turn up again if somebody finds the device.

Go to http://securityviews.com/blog/2007/08/31/cyber-bag-lady/ .
Doug Alder said,

on August 29th, 2008 at 8:07 pm

A friend of mine in Germany discovered (fortunately before any damage was done) that a lot of cheap USB sticks made in China came with, not one but two Trojans built right into the memory manager portion of the stick - you can read about it at http://www.savory.de/blog_feb_08.htm#20080203

there was not only one but TWO trojans on board ex-factory which contained key-loggers which would have tried to phish me and send my keywords (and bank account info?) back to an IP address in China

So I deleted both trojans and then called the PC shop and informed the owner. His subsequent tests showed the whole batch to be infected ex-factory

The trojans had been hidden in the so-called memory-manager SW aboard the stick.

Oh ya the other nasty part was even though the package said they were 4GB capacity they were really only 2GB

Caveat Emptor

The Honey Stick Project

Over 40% of people who find USB Drives put their computers at risk by plugging them in... Your staff could be one click away from bringing down your operational information systems.

Pages

Search the Site

Associates

Articles by Month

Categories

Meta

Stories about Mobile Storage Device Security

2 Responses to 'Stories about Mobile Storage Device Security'

Leave a Reply