14 DAY TRIAL // A report coming out of Panda Labs shows an increased trend for new malware and worm attacks to use USB devices as distribution channels.
The report places the figure around 25%, so for every one in four USB device, an attack has been reported.
Even if email attacks are still predominant, USB threats are on the rise, mainly due to the new wave of USB enabled devices launched on the tech market in recent years.
But don't imagine that only simple pocket-size USB drives are responsible. Any kind of USB device is susceptible to these attacks.
Anything from a digital camera, cell phone, external hard drive, DVD player, MP3 player, memory card, or mobile device can be the host of an USB worm.
These attacks rely on the Windows routine of reading the “Autorun.inf” file to get instructions on how to manage the newly connected USB device.
New worms are created that when reaching an USB device for the first time, modify the “Autorun.inf” file with malicious code, forcing the host to which the USB device is connected into running commands without the user's permission and even knowledge.
This technique is highly effective mainly because the user can't even react, Windows reading the infected autorun file almost instantly the device is connected.
Nevertheless, system hacks exist, disabling some Windows procedures when handling USB devices, forcing the OS to skip “Autorun.inf” when mounting any USB device.
Proprietary USB security software still isn't something that common, but some products have hit the market.
In the past, USBs have been responsible for famous incidents where they have been used as a distribution channel for some dangerous worms.
Security data from Panda’s Second International SMB Security Barometer shows that from a pool of 10,470 companies spread across 20 countries, 27% of them report infections with the source of the attack being localized on an external USB device.
The likes of the Mariposa and Vodafone botnets, and the dangerous Conficker and Stuxnet worms successfully used USB devices to spread on millions of computers around the world.