Interested in security? Follow along for content within Cybersecurity
Removable media gives users convenience when it comes to accessing personal or business data on the go. USB flash drives are one of the most popular removable media devices used today and as the use increases, so do the associated risks. Hackers have the tendency to go after popular devices and search for possible ways to install malware. Using these devices will increase the risk of data loss, data exposure, and there is an increased chance of network-based attacks. In this article, I go into detail about removable media and security best practices to protect your removable media and devices.
Table of Contents:
Removable media is a portable device - like a USB drive - that can be connected to a computer, network, or information system that is used for transporting and storing data. It is convenient, cost-effective, and is available in many different sizes.
There are two main uses for removable media:
When it comes to cybersecurity best practices, removable media and devices should only be plugged into trusted computers. If you find a USB flash drive on the ground, don’t pick it up because there is a possibility that it could be malicious. A hacker may have planted it on the ground to see if someone would pick it up and insert it into their device. If inserted into your computer, malware could immediately be downloaded onto your device.
Here are some examples of different kinds of removable media devices:
Removable media introduces many security risks and vulnerabilities as it stores a large volume of data including sensitive data. Therefore, failure to properly manage and secure these removable media and devices could expose users to the following risks:
Removable media can be easy to lose, which could result in the compromise of the sensitive information stored on it. You should be aware that some media types may be able to retain information even after deletion.
Malware could be introduced on a system via a flash drive once inserted into the USB port.
Data exfiltration, if you are not careful and insert an unknown USB drive, may be malicious and could steal data from an organization.
Autorun is problematic especially with removable media - they can be helpful but hackers abuse this feature by setting malicious programs to run automatically on removable media.
Reputational damage is the loss of sensitive information that can negatively affect an organization’s reputation.
The best protection against any attack on removable media is to insert only trusted removable media into your computer. However, there are other preventive measures as well including the following:
Using removable media, like a flash drive, can be dangerous within an organization because the malware is able to bypass the security solution that is deployed at an organization’s network perimeter. USB drives are the best ways for hackers to exfiltrate sensitive data from an organization and are more difficult to detect. Each time that a removable media device is used, there is a possibility that a computer may become infected.
Since removable media and devices are an integral part of today’s society, it is important that all users and top executives within an organization understand what they can do to protect themselves and the organization from malware and viruses.