This is an easy one. Its also easy to get the login credentials from a cold system using some basic tools in my toolbelt, and I am no 3 letter agency. Maybe M$ could wake up and write OS code that would disable USB completely when the user lock screen is engaged. Obviously that would be a system option to tick because some folks wouldn't want disabled usb. That would be a simple code manipulation and it would work well!! As soon as unlocked you would have full USB again.
I think you'd also need the option to keep all existing USB ports currently connected to some device to stay enabled. Otherwise, many necessary devices (for example, portable drives) would stop working as soon as the lock screen turned on. Of course, what if a USB hub is currently connected? Would leaving the hub enabled also allow new "evil" devices to be plugged in to the hub? The arms race continues...
Agreed . The required little hardware doo-dad has been freely available for over a year , and it's better known predecessor for much longer , They are well-respected and trusted tools in the legit pen-testing world , although easily adapted for use as a weapon ( but the same applies to a bottle ) . This particular item retails at exactly the same price as the "USBKill" that has been discussed recently ... Hmm Anyway , I reckon that the guy who wrote the original article was a little slow off the blocks with this one .
