My wife is a teacher and regularly is putting her flash drive in computers that are openly accessible to the faculty and student population. In addition, she sometimes goes to copy centers and plugs the drive in to kiosks there to print some files. She later brings the flash drive home and plugs it in to her personal computer. Is there still a risk of malware being transferred like this, as there was years ago, or has that risk been mitigated now that Windows does not allow the autorun of executable files from removable drives? Thanks
suggest you read/watch these (and then edja-muh-cate them thar teachurz) The Exploration and Exploitation of an SD Memory Card (Jan 2014) https://www.youtube.com/watch?v=CPEzLNh5YIo https://en.wikipedia.org/wiki/USB_flash_drive_security https://www.youtube.com/results?search_query=badusb
I would turn off autorun for any removable drives. Typically nowadays most AV suite does have the feature to scan the USB drive the moment you plug it in. Some security suites are focused particularly flash drive infection hence perhaps you could try that too.
Thanks for the links, inka. Made for interesting reading. PaleDark, I believe autorun on flash drives is now disabled by default on newer versions of Windows.
Yes you're right. You have to disable it manually. And autoplay also. One more link: http://www.redmondpie.com/how-to-disable-autorun-autoplay-in-windows-7-and-windows-8/