Related Links

  • Computer Weekly
  • Reed Exhibitions Ltd is not responsible for the content of external websites.

Related Stories

Top 5 Stories


One in eight malware attacks are via a USB device, study shows

04 November 2010

A growing number of malware attacks are using plug-in USB devices, according to researchers at security firm Avast Software.

Of 700 000 recorded attacks monitored by Avast in the last week in October, 13.5% came through USB devices the researchers said.

The key attack point for malware is the AutoRun feature in Microsoft Windows operating systems, they said.

The threat of USB-distributed malware is much more widespread than just the Stuxnet attacks on enterprise computers, said Jan Sirmer, analyst at Avast Virus Lab.

"Cyber-criminals are taking advantage of people's natural inclination to share with their friends and the growing memory capacity of USB devices," he said.

Any infected USB device, but most commonly memory sticks, typically starts an executable file that pulls in a vast array of malware that is copied to Windows.

"In a work environment, staff will often bring in their own USB memory sticks to move files around," said Sirmer.

"This can bypass gateway malware scanners and leave the responsibility for stopping malware just on the local machines' antivirus software," he said.

Detecting AutoRun malware is complicated by the growing memory of USB devices and more complex obfuscation techniques, said Sirmer.

"This danger is poised to increase with the introduction of the new USB 3 standard. In parallel with these technological improvements, the writers of AutoRun malware are developing new code and ways to obfuscate their work," he said.

This story was first published by Computer Weekly

This article is featured in:
Malware and Hardware Security


Comment on this article

You must be registered and logged in to leave a comment about this article.

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×