Use drop in office and other public places or parking lot USB device malware attacks are not uncommon. But Trustwave Spiderlabs researchers have been investigating disguised as gift cards new attacks.
Attacks come in the form of a letter, the letter seems to come from retail chain Best Buy (Best Buy), which offers a $ 50 gift to loyal customers. I have enclosed a U-disk, which is said to contain a list of items to spend money.
This is the place sneaky, USB device actually contains a USB keyboard programmed to simulate the Arduino microcontroller. Because trusts keyboard USB devices normally default PC, so once inserted into the keyboard emulator automatically malicious command injection system.
Therefore, the drive can be used to attack a user's computer and infect unsuspecting, without them realizing it. This USB device with a built-in processor has been widely known, and security professionals. They are also very cheap, anyone can easily get, so to see the criminals use this technology in the field is not entirely surprising.
If you do not know the source of the USB device, then the moral of this article is to never trust a USB device.