USB Hacking Devices Can Steal Credentials From Locked Computers

Discussion in 'other security issues & news' started by ronjor, Sep 8, 2016.

  1. ronjor

    ronjor Global Moderator

    Joined:
    Jul 21, 2003
    Posts:
    57,728
    Location:
    Texas
    By Eduard Kovacs on September 08, 2016
     
  2. Palancar

    Palancar Registered Member

    Joined:
    Oct 26, 2011
    Posts:
    1,592
    This is an easy one. Its also easy to get the login credentials from a cold system using some basic tools in my toolbelt, and I am no 3 letter agency.

    Maybe M$ could wake up and write OS code that would disable USB completely when the user lock screen is engaged. Obviously that would be a system option to tick because some folks wouldn't want disabled usb. That would be a simple code manipulation and it would work well!! As soon as unlocked you would have full USB again.
     
  3. Muad Dib

    Muad Dib Registered Member

    Joined:
    Dec 30, 2007
    Posts:
    4
    I think you'd also need the option to keep all existing USB ports currently connected to some device to stay enabled. Otherwise, many necessary devices (for example, portable drives) would stop working as soon as the lock screen turned on. Of course, what if a USB hub is currently connected? Would leaving the hub enabled also allow new "evil" devices to be plugged in to the hub? The arms race continues...
     
    Last edited: Sep 17, 2016
  4. quietman

    quietman Registered Member

    Joined:
    Dec 27, 2014
    Posts:
    490
    Location:
    Earth .... occasionally
    Agreed .
    The required little hardware doo-dad has been freely available for over a year , and it's better known predecessor for much longer ,

    They are well-respected and trusted tools in the legit pen-testing world , although easily adapted for use as a weapon ( but the same applies to a bottle ) .

    This particular item retails at exactly the same price as the "USBKill" that has been discussed recently ... Hmm

    Anyway , I reckon that the guy who wrote the original article was a little slow off the blocks with this one .
    :)
     
    Last edited: Sep 17, 2016
  5. Palancar

    Palancar Registered Member

    Joined:
    Oct 26, 2011
    Posts:
    1,592
    You are starting to "pull me back" to my addictions over at BackTrack! Stop it, LOL!
     
Loading...