Chem Co. Halts USB Stick Attack

Thursday, July 12, 2012 @ 05:07 PM gHale

When everyone is on the ball and fully involved in a security program, a company will just reap dividends. Just take a look at Dutch chemical giant DSM.

It seems a potential hacker element left a bunch of malware-riddled USB sticks in the company’s car parking lot. Instead of plugging the discarded drives into a workstation, which would have infected the machine, a DSM worker who found one of the devices handed it in to the IT department.

Exploit Determines OS, then Attacks
Disabled Auto-Run Saves Energy Firm
ICS-CERT: Attacks on Rise
Cyber Secure Device Certification

Yikes. The IT workers did a quick check and found an unspecified password-stealing keylogger.

The intent of the spyware was to upload usernames and passwords to a server under the control of hackers.

System administrators blocked the site thwarting the password stealing potential. Knowing this the company is now safe, even if any other workers are not as alert and they find and use the infected USB sticks on corporate laptops.

While the company remains protected, they do not know who was behind the attack.

Using infected USB sticks as a method of smuggling malware into firms has become a regular occurrence over recent years, security researchers said, especially since they are potentially one of the entry points for the Stuxnet worm.

Leave a Reply

You must be logged in to post a comment.