Panda Points to USB as Popular Gateway for Worms

rated by 0 users
This post has 3 Replies | 0 Followers

Top 10 Contributor
Posts 26,100
Points 1,183,670
Joined: Sep 2007
ForumsAdministrator
News Posted: Fri, Aug 27 2010 12:38 PM
You have to be more careful than ever when it comes to sticking things into little holes. Get your mind out of the gutter, we're obviously talking about plugging electronic gadgets into USB ports, this being HotHardware and not Hot_____ (fill in the blank). That's the word from PandaLabs, which claims that 25 percent of new worms wiggling into the wild are specifically designed to spread through USB storage devices, where they can then copy themselves to a whole host of mobile hardware, like cell phones, DVDs, MP3 players, and more.

"At present, much of the malware in circulation has been designed to distribute through these devices," explains Luis Corrons, Technical Director of PandaLabs. "Not only does it copy itself to these gadgets, but it also runs automatically when a USB device is connected to a computer, infecting the system practically transparently to the user. This has been the case with many infections we have seen this year, such as the distribution of the Mariposa and Vodafone botnets."


As would be expected, PandaLabs says circulating malware via USB has been "highly effective." In a survey of over 10,000 companies across 20 countries, PandaLabs claims nearly half admitted to having been infected with some type of malware during the last year, with 27 percent confirming that the infection originated from a USB device.

So what can you do? Be careful about the devices you plug into your PC. The problem with that, however, is that we've seen cases where malware comes preinstalled straight from the factory, like digital photo frames and even some driver discs.


If you want to put your trust in Panda, the company offers a utility called Panda USB Vaccine that disables the AutoRun feature in Windows.

"This is a very useful tool as there is no simple way of disabling the AutoRun feature in Windows. This tool makes it simple for users, offering a high level of security against infections through removable drives and devices", explains Luis Corrons, Technical Director of PandaLabs.

Beyond that, consider dropping the tough guy routine, sucking it up, and installing antivirus software. While those who preach against running any type of AV software point out that safe computing habits are all you need, the reality is this isn't always enough.
  • | Post Points: 50
Top 75 Contributor
Posts 1,248
Points 11,580
Joined: Jan 2005
Location: Florida

I suppose someone had to write a program to do this bit of easy modification for the masses without much computer knowledge. I personally spend the first day or two (software wise) with any new computer locking it down hard.

Smooth Creations LANShark "Blue Flame" + ASUS G73JH-A2 + ASUS EeePC S101H

"I frag therefore I am!"

  • | Post Points: 5
Top 10 Contributor
Posts 5,053
Points 60,715
Joined: May 2008
Location: U.S.
Moderator
3vi1 replied on Fri, Aug 27 2010 7:40 PM

What part of "Ph'nglui mglw'nafh Cthulhu R'lyeh wgah'nagl fhtagn" don't you understand?

++++++++++++[>++++>+++++++++>+++>+<<<<-]>+++.>++++++++++.-------------.+++.>---.>--.

  • Filed under: ,
  • | Post Points: 5
Top 500 Contributor
Posts 158
Points 1,735
Joined: Mar 2010

"You have to be more careful than ever when it comes to sticking things into little holes."

That's right, our pedophile readers, we're looking at you!

"If you want to put your trust in Panda, the company offers a utility called Panda USB Vaccine that disables the AutoRun feature in Windows."

I wholeheartedly agree. The only real trouble I've ever had with viruses (and I never really used an AV program) was this one virus that corrupted AutoRun, and duplicated itself on every single flash drive I plugged into that computer. Only Vista was immune (Vista's version of AutoRun displayed the options by default and allowed me to see the wierdly-named files before they executed), point in its favor I guess. I'll check out this panda vaccine...or I would, if I wasn't using Linux and pretty much forgot what a virus was.

Lol @ Evil, that's actually how I got rid of the virus.

  • | Post Points: 5
Page 1 of 1 (4 items) | RSS