Upload File

overcoming usb (in)security

Download Overcoming USB (In)Security

If you can't read please download the document

Upload: michael-boman

Post on 25-May-2015

2.766 views

Category:

Economy & Finance


1 download

Report

DESCRIPTION

This is the slides I used for my "Overcoming USB (In)Security" presentation at NextGen CyberCrime conference in Singapore

TRANSCRIPT

  • 1. Overcoming USB (In)Security
      • Michael Boman
    • [email_address]
    • http://www.michaelboman.org

2. Agenda

  • The Removable Storage Problem
  • The USB Attack Vector
  • Protecting the Organization Against
    • Disgruntled Employees
    • Careless Employees
    • Malicious Individuals
  • Question and Answers

3. Agenda

  • The Removable Storage Problem
  • The USB Attack Vector
  • Protecting the Organization Against
    • Disgruntled Employees
    • Careless Employees
    • Malicious Individuals
  • Question and Answers

4. Lost Data In The News

  • Laptop stolen (May 2006) Held private information on 26 million veterans Class Action Lawsuit: $1,000 for each person!
  • October 29, 2006 Lost CD contains personal data for more than a quarter-million hospital patients.
  • October 30, 2006 US Federal Homeland Security Storage Drive on the Loose

5. Lost Data In The News

  • November 20, 2006 Stolen Laptop causes warning to 11 million UK customers
  • November 22, 2006 Laptops with UK Police Payroll Details Stolen
  • April. 10, 2007 Georgia Dept. of Community Health Disk Missing

6. Agenda

  • The Removable Storage Problem
  • The USB Attack Vector
  • Protecting the Organization Against
    • Disgruntled Employees
    • Careless Employees
    • Malicious Individuals
  • Question and Answers

7. The USB Attack Vector

  • Disgruntled Employees
    • Copy confidential data to personal USB device(s)
      • Sell to competitors
      • Blackmail the company
      • Bring your customers to the next employer

8. The USB Attack Vector

  • Careless Employees
    • Storing confidential data on removable storage
      • Which can be, and often is, lost or stolen

9. The USB Attack Vector

  • Malicious Individuals
    • Use USB devices as attack vector and toolbox as well as store stolen data on it

10. Agenda

  • The Removable Storage Problem
  • The USB Attack Vector
  • Protecting the Organization Against
    • Disgruntled Employees
    • Careless Employees
    • Malicious Individuals
  • Question and Answers

11. Protecting Against Disgruntled Employees

  • Just Make A Policy That Forbids USB Devices

12. USB Devices 13. USB Devices 14. USB Devices 15. USB Devices 16. USB Devices 17. USB Devices 18. USB Devices 19. USB Devices ? ? 20. USB Devices 21. USB Devices 22. Restricting USB Access

  • Physically Disable USB ports
    • Super-glue the USB port
    • Encase the computer in secured cabinets
  • Logically Disable USB ports
    • Windows Group Policies
    • 3rd Party Software

23. Super-Glue the USB port 24. Encase the computers in secured cabinets 25. Use software to disable USB Storage Devices 26. Agenda

  • The Removable Storage Problem
  • The USB Attack Vector
  • Protecting the Organization Against
    • Disgruntled Employees
    • Careless Employees
    • Malicious Individuals
  • Question and Answers

27. Protecting Against Careless Employees What if there is valid business reasons to use USB storage devices? 28. Storing Data Securely

  • Encrypt data
    • TrueCrypt
      • Free (Libre / Gratis) Open Source Software
      • Cross-platform
        • Windows
        • Linux
    • Various Commercial Offerings Exists

29. DEMO

    • Truecrypt Enable your USB Device

30. Agenda

  • The Removable Storage Problem
  • The USB Attack Vector
  • Protecting the Organization Against
    • Disgruntled Employees
    • Careless Employees
    • Malicious Individuals
  • Question and Answers

31. Background Information on U3 Enabled Drives 32. Exploiting USB

  • Switchblade
    • Silently recover information from a target Windows PCs, including password hashes, LSA secrets, IP information, etc...

33. Exploiting USB

  • Hacksaw
    • Automatically infect Windows PCs with a payload that will retrieve documents from USB drives plugged into the target machine and securely transmit them to an email account.

34. DEMO

    • Hacking with USB drive

35. Additional Hardening

  • Disable Autorun
    • http://support.microsoft.com/kb/155217
  • Unfortunately there is no patch for human stupidity
    • Awareness Training is a MUST

36. Don't forget Data Slurping 37. Agenda

  • The Removable Storage Problem
  • The USB Attack Vector
  • Protecting the Organization Against
    • Disgruntled Employees
    • Careless Employees
    • Malicious Individuals
  • Question and Answers

38. Q & A

    • If you got any questions, now is the time to ask them

39. Thank You!

    • Slides are available at http://michaelboman.org under Creative Commons BY-NC-SA 3.0 License

40. References

  • IntelliAdmin's USB Drive Disabler http://www.intelliadmin.com/blog/2007/01/disable-usb-flash-drives.html
  • TrueCrypt
  • http://www.truecrypt.org
  • Switchblade
  • http://www.hak5.org/wiki/USB_Switchblade
  • Hacksaw
  • http://www.hak5.org/wiki/USB_Hacksaw

Overcoming the Security Council Reform Impasse

INSTALACIÓN DE USB DISK SECURITY

Security Briefing AES Security USB Flash Drives · AES USB Flash Drive Security Weakness Security fault with some AES USB Flash Drives on the market: 1. 1.User types in their password

Alpha USB DPS-1 - Settec DPS.pdf · Alpha-USB DPS is a new type of security USB which has been specially developed for the complete data protection. Alpha-USB DPS users can record

Overcoming today's challenges for tomorrow's security · 2019-11-19 · 3 | PwC Overcoming today’s challenges for tomorrow’s security The PwC Global Defence Advisory Board The

Overcoming GREE D. PROBLEMSCAUSESSOLUTIONSAPPLICATIONS OVERCOMING GREED

USB flash drive security

CAMBIUM NETWORKS SOLUTION PAPER: OVERCOMING BORDER SECURITY

USB (In)Security 2008-08-22

My Passport™ Portable Storage - Product Data and E ......USB 3.0 USB 2.0 KIT CONTENTS • Portable hard drive • USB 3.0 cable • WD Backup , WD Security and WD Drive Utilities

USB: Undermining Security Barriers

eScan Corporate Edition - Document Automation … · 2016-06-01 · Anti-Virus & Content Security USB Whitelisting Read-Only USB eScan Feature Panda Security for Business Bluetooth

USB - Undermining Security Barriers Andy Davis NGS Secure · 2012-04-07 · USB Primer - Terminology • The USB bus • When the host is transmitting a packet of data, it is sent

Modified USB Security Token for User Authentication · Modified USB Security Token for User Authentication Wala’a M. AlOmari1 & Hesham Abusaimeh2 1 Computer Engineer, Jordan Academy

Smart Foods: Good for you, Good for the planet, Important for food security and overcoming poverty

The State of USB Drive Security - Kingston Technologymedia.kingston.com/images/usb/pdf/MKP_272_Ponemon_WP.pdfThe State of USB Drive Security ... virus or malware infections that may

INDUSTRIAL CYBER SECURITY - Honeywell · SMX Protects Against Advanced USB Threats 14 ty BadUSB •Manipulation of USB firmware. •USB device will act as a HID - Human Interface

USB Flash Memory - Toshiba Europe · EX II USB Flash Memory Security Software User Manual 2 Chapter 1: Introduction Thank you for purchasing USB Flash Memory (TransMemory-EX IITM)

Usb Drives Portable Storage Devices Physical Security 4013

AES 256-BIT HARDWARE ENCRYPTED USB FLASH … · Integral Crypto AES 256-bit hardware encrypted USB Drives USB Flash Drive security is a challenge facing all IT departments and with

Overcoming Security Challenges in DevOps

The State of USB Drive Security - Kingston Technology...Deploying encryption for data stored on the USB drive. Monitoring and tracking USB drives as part of asset management procedures

Usb security version 5

10th Anniversary Homeland Defense & Security Education ... · Homeland Defense & Security Education Summit Overcoming Barriers: Looking at the Next 10 Years of Homeland Security Strategies,

1715-tit 1 · IV Îãëàâëåíèå 2.2. ..... 32 2.2.1. USB Disk Security ..... 32

E.Z.- UDVR USB Digital Network Security Solution

Overcoming Challenges Arising from the Creation of ... · Arthur Chan Overcoming Challenges Arising from the Creation of National Security Councils A Framework and Lessons from Sub-Saharan

y Chip ecurit S USB · 2009-03-13 · y Chip ecurit S USB Chip Inside Hardware Security Module KISA FCC , , . . uToken Combo HSM (Hardware Security Module) USB . USB, PMS(Patch Management

Overcoming Hidden Risks in a Shared Security Model

Overcoming Security Threats and Vulnerabilities in SharePoint

Overcoming Security Challenges in WAP Protocolijarcet.org/wp-content/uploads/IJARCET-VOL-4-ISSUE-5...Overcoming Security Challenges in WAP Protocol CHAUHAN SHAILENDRA MCA-3rd Year

Overcoming Cyber IA Challenges - Cyber Security and ... · lead article, “Overcoming Cyber IA Challenges Through Better IA Policy Development and Implementation,” is misleading

Overcoming the Power Gap: Reorienting the Inter … Overcoming the Power Gap: Reorienting the Inter-American System for Hemispheric Security Colonel Glenn R. Weidner United States

Mnemonic Guard personal verification technology based on old memory overcoming security-paradox without risking privacy Mnemonic Security, Inc.

Finding Meaning in Our Measures: Overcoming Challenges to Quantitative Food Security USDA Economic Research Service February 9, 2015 Food Security As Resilience: