Undetectable Security Flaw Found in USBs -- Security Today

Undetectable Security Flaw Found in USBs

By Ginger Hill
Jul 31, 2014

Undetectable Security Flaw Found in USBs The humble USB that interconnects our digital lives may not be as safe as we think. New research reveals a fundamental security flaw in the way this little data-saving jewel functions, and it could wreak havoc on computer systems.

Security researchers, Karsten Nohl and Jakob Lell, have reverse engineered the firmware that controls the basic functions of USBs, discovering an embedded controller chip that allows the device and connected computer to send information back and forth. This malware does not sit in flash memory, but is instead, hidden in the firmware.

It’s virtually impossible to check if a device’s firmware has been tampered with, besides, the malware can travel both ways, via a USB to infect a computer and then the PC can infect other USBs plugged into it.

So, what can be done about this? Very little, actually, as there’s no patch code that can be used. The only viable action at this time is to not plug a USB device into any computer that you don’t trust and don’t plug untrusted USBs into computers.

About the Author

Ginger Hill is Group Social Media Manager.

Featured

The Rise of Weapon Detectors in Hospitals

Healthcare facilities are ditching reactive security for proactive weapon detection to combat rising workplace violence and meet new regulations. Read Now
- Hospital
- Facility Security
The Future of Access Control In 2026

Explore the five key trends as physical security and digital infrastructure converge to create more connected, user-centric, and open ecosystems. Read Now
- Access Control
- Building Automation
The Fast Pace of AI Innovation

From Vision Language Models to Agentic AI, discover how the next generation of multimodal systems is transforming threat detection and response. Read Now
- Artificial Intelligence
- Video Surveillance
Why The Future of Security Starts at the Edge

Discover how a metadata-led approach and Edge AI are replacing traditional video streaming to slash cloud costs and improve real-time response. Read Now
- Artificial Intelligence
- Video Surveillance
Smart Surveillance in Modern Casinos

From AI-driven analytics to 4K data infrastructure, discover how casinos are navigating shifting regulations and tech to protect the bottom line. Read Now
- Casino Security
- Video Surveillance

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

HD2055 Modular Barricade

Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation.
Mobile Safe Shield

SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame.
EasyGate SPT SPD

Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.