Friday, November 27, 13:06
Home security Check your USB Devices for Dangerous Firmware

Check your USB Devices for Dangerous Firmware

According to a security company investigation Eclypsium, the devices USB that users use can make their computers vulnerable to cyber criminals trying to steal their data. This is due to the fact that many peripheral devices are based on Linux and Windows, there is non-certified firmware, which often paves the way for many types of attacks, including spyware, ransomware etc. A firmware is considered unverified when manufacturers have not entered a validation key into it. This can allow malicious code to be inserted during download and installation drivers or updates from manufacturers.

According to research conducted by the company, many devices trackpads, USB, adapters Wi-Fi and cameras used on computers manufactured by Dell, HP, HP, and Dell Lenovo and other manufacturers, contain such firmware. The company demonstrated its research through demonstrations, using each product from the three large companies, to show an attack that could take place on a server, using network interface cards containing unverified firmware. As it turned out, when the firmware is infected on any device, it becomes impossible for any antivirus to detect malware. Despite this, peripheral manufacturers do not adopt the introduction of certified firmware, leaving millions of Linux and Windows systems exposed.

Devices that contain this firmware are vulnerable to attacks, which can extract data and interrupt the devices that affect them, or even carry out ransomware attacks. Such incidents are detrimental to the proper functioning and security of business devices, including drives, network cards, and other peripheral devices.

Unfortunately, this problem cannot be fixed unless manufacturers remove the non-certified firmware. Many companies update their devices to avoid threats, but there are many who still leave their devices exposed. However, the users should keep in mind that even after updating the devices, they will have to download and install the devices themselves, which is not easy. Users should check Appliances for non-certified firmware and drivers, as there is still no solution to the problem. Here are the steps to check the devices:

  1. Go to the menu Start Windows.
  2. Then look for it Device Manager and execute it.
  3. Then right-click on a device.
  4. Then press “Properties".
  5. Now you need to go to the tab "driver”And then you will find a tab labeled“Digital Signer".
  6. There you will see whether the device is registered as not certified or not.
  7. Then go to “Driver details”And click on it. A window will appear listing the driver programs installed for that device.
  8. You'll see certified devices appear with a certification icon.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Word: How to add the same text to multiple documents with one link

Microsoft Word makes it easy to add the same text to multiple documents. This is especially convenient for text with special formatting, the ...

Black Friday: Cybercriminals are monitoring your shopping

Due to the conditions that have emerged from the pandemic of COVID-19, the online shopping will be particularly high on Black Friday and ...

US fertility: Ransomware attack on the largest fertility network in the USA!

US Fertility, the largest fertility network in the US, announced that some of its systems were encrypted in an ransomware attack that ...

Phishing attack pretends to be an invitation to a Zoom meeting

A massive phishing attack has been going on since yesterday, pretending to be an invitation to a meeting at Zoom.

Yanis Varoufakis: Demands a boycott of Amazon on Black Friday

The former Minister of Finance of Greece and leader of the political party "MERA 25", Giannis Varoufakis, demands a boycott of Amazon on the day of Black ...

Personal data of patients with COVID-19 have been leaked to the internet

Personal data and health data of about 16 million Brazilian patients with COVID-19 were exposed on the Internet, as a hospital employee uploaded to GitHub ...

The American company Rand McNally was attacked by a cyber

Chicago-based technology company Rand McNally is working to restore the functionality of its network after the ...

North Korean hackers tried to intervene in vaccine trials

According to the authorities, the South Korean intelligence service prevented attempts by hackers from North Korea to stop the development tests ...

Britain: E-commerce platform leaked data

The Criminal Investigation Department (CID) in collaboration with the cybercrime prosecution of England, are conducting investigations to identify a malicious agent, ...

Russia: Will it ban social media sites that censor Russian news agencies?

Russia plans to introduce a new bill that would ban foreign social media sites in the country. This comes after ...