A short while ago there was a security conference being held and one of the vendors at this conference was IBM.
If you have ever been to a conference before then you know that there is a lot of swag that is handed out.
Swag is a product that the person or company might be giving away free in order to promote their products, such as when you go to a baseball game and it is free bat day.
So, at this particular conference, IBM decided to give away, as part of their swag, a USB device.
A USB thumb drive to be exact.
It turns out that this innocent looking thumb drive had a virus already loaded onto it.
If you are a company that is presenting at a security conference, this can be pretty embarrassing – it makes you look very bad, especially in a room full of security experts that you are trying to impress!
This fiasco proved one thing – that even in a company as large as IBM they forget to check even the simple things.
The problem could have been avoided if they simply checked even a small sample of the devices to see if any malware was on them.
When people think of malware they automatically assume that it is going to come from some rogue piece of software off of the internet and they forget that, before the internet was in as many places that it is now, some of these attacks were done through hardware devices.
Before the USB thumb drive it would be the floppy disk that would spread this type of malware around to other people’s computers.
The sharing and copying of floppy disks to spread data around the office used to be known as the sneakernet and there were plenty of pieces of bad malware that were spread around in that manner.
So we have taken the lessons of the past and completely forgotten about them.
In the world of technology, we tend to be forward looking; we do not look at the past for inspiration as much as other fields do.
So sometimes we have to learn lessons two or three times before they are able to sink into our heads.
Companies handing out malware to a security conference in the form of a piece of hardware are definitely an example of an old school lesson that has been forgotten in history.
So make sure that you do not forget this lesson.
When you have a new hardware device such as an USB thumb drive or a DVD disk make sure you run a scan on it first.
There are people still passing around viruses and other such malware on hardware devices.
If you were downloading anything from the internet you would be sure to scan it first before you ran it wouldn’t you?
Make sure you do the same with hardware on your computer as well.