-
add to favourites
Got a new USB flash drive? Scan it first
Tuesday, June 6, 2017
You already know that clicking on a link in an email can get your system infected with encryption ransomware, and giving your flash drive to your kid for the day can land you with a Trojan on your computer. But these are situations where the computers and removable media have already been in use for some time. Should newly purchased flash drives and hard drives be scanned for malware?
Initialization USB drives for IBM Storwize disk arrays were shipped with malware on them. The Trojan didn't compromise the storage arrays but the computers that were used to configure them. Depending on the target OS, the malware file was copied along with the initialisation software into %TMP%\initTool (Windows) or /tmp/initTool (Linux and Mac).
Flash drives that were shipped with Storwize V3500 and V5000 have been affected.
A cross-platform Trojan on a flash drive from a renowned and well-respected company is an ideal method of infection.
Interestingly, the company doesn't recommend to users that they clean the flash drives with an anti-virus scanner but advises them to "securely destroy the USB flash drive so that it cannot be reused".
How could a malicious file end up on the removable drives?
There are several possibilities:
- Negligence on the part of a contractor who failed to scan the removable media image before it was put to use.
- Negligence on the part of a contractor who failed to scan the removable media image before it was put to use.
- An anti-virus failed to detect the malicious file because the infection hadn't yet been examined in an anti-virus laboratory.
- And, unfortunately, there is also the possibility that someone deliberately compromised entire shipments of the removable media.
Can one prevent a system from getting infected?
Let's get back to the news. The Trojan didn't compromise the storage arrays but the computers that were used to configure them. Regular Anti-virus Times readers already know that Trojans can't infect other files and can only get onto a flash drive if someone or another program copies them to the media. And this means that to prevent unknown Trojans from infecting your flash drives, you should just make sure that no extra files get onto them.
Dr.Web detects the Trojan in question as Trojan.Inject1.10883 and, therefore, it poses no threat to computers that are protected by our anti-virus.
#security #anti-virus_scanning #anti-virus_scanThe Anti-virus Times recommends
Many people know that if they've borrowed a flash drive from someone, it must be scanned for malware. And here we must also add that newly purchased USB sticks and hard drives should also be checked. After all, starting the Dr.Web scanner is easy: just click on the icon 
on the desktop, or you can use the context menu as well as the anti-virus agent menu (whichever is more convenient for you).
![[Twitter]](http://st.drweb.com/static/new-www/social/no_radius/twitter.png "Shared 0 times")
Tell us what you think
To leave a comment, you need to log in under your Doctor Web site account. If you don't have an account yet, you can create one.
Comments
Неуёмный Обыватель
03:54:36 2018-07-21
vasvet
07:43:00 2018-06-30