Classic British Flight Sim

Hi All.

I thought I should post this in ES instead of in the Spanner section as it may get overlooked.

The chips in USB devices have been found to have a serious flaw which expose them to malicious types who want to ruin your day.
From thumb drives to printers. - All USB devices.
For now all we can do is be careful what you plug in your PC.
The thumb drives (memory stick) have been known to be a tool to spread a virus and other malicious tools used to take control of a PC.
But now that the chips themselves have been hacked , the playing field is a much more wider and dangerous one.

I don't have a link I'll post as I think it would be better if you google it on yahoo ( ) or whatever and learn about this flaw.
It's not, "chicken do little the sky is falling" thing yet ,but it's something you should be aware of, and keep yourself safe.


Joe

Hi Joe,

Thanks for the Warning, something to keep an eye on,

I will not post what i would do with these Hackers if i could catch them as i would get banned!!!

Roger.

Roger I think that you would more likely to be knighted than banned! EricT

Sir Roger the Dodger...has a nice ring to it.

Indeed it does!

Does this flaw only apply to devices that are 'downloaded to'? I never download to a USB stick and only really use the one I have when Win7/XP/Vista aren't talking over the network (which doesn't happen often I have to say).

ATB
DaveB

The flaw is where someone makes a dodgy device, not something that's installed on a memory stick.

Hi Ben,.... Dave

From what I gather the flaw is in the chip itself that communicate with a PC that identifies itself as a -Printer , or phone, or memory stick. So it's any device that is USB. ((Phones can be made to be seen as a networking device and such ))

The memory Sticks do of course have more vulnerabilities because a virus can be installed onto them in the partition the software is installed that make them work.
So formatting the usable partition won't remove the virus.

OK
I learned a little about memory stick partitions not too long ago when one of my USB sticks became corrupted during a file transfer.

During the transfer the device locked up and sat idle for hours. I canceled the process and then unplugged it from the usb port - After the PC shut down.
When I plugged it back in after booting up the PC Windows said the device need to be formatted, - I chose to format.
Then a dialog box popped up telling me windows didn't recognized the file type.
A tried several times to format it, but the same message popped up.
I talked with several people I know (Microsoft certified) about it, A couple of them gave me software tools they thought might fix it, but they all told me they'd never gotten one sorted.
...But I just couldn't/wouldn't accept it wasn't fixable.
So I searched and searched the internet reading through dozens of threads where some had fixed the problem. unfortunatly, none of their solutions worked for me.
I gave up on it for a few weeks, then started looking again.
I happened across an obscure thread within the manufactures (Patriot) web site and found a tool that is a low level formatting process of the entire stick.
(Big Warning about destroying any chance of repair using the tool,) It's the process all sticks have done to them after assembly.
So I held my breath and let her rip.
Bing Bang Boom! FIXED..
Apparently the partitions were damaged,
...
Now of course "Rick", a 25 year certified IT Networking "bloke" I've known for a few years and have fixed a number of his cars he buys and sells , said .....
"Just throw it away and buy a new one,, GAWD! ). ... Suffice to say he is a bit more reluctant to throw down a gauntlet in front of me now.. after paying up the 10 bucks I bet him .. That I could fix it... and this is the reason why I believed I could
A file recovery program did recover files off the stick before I fixed it.. and if it could do that. It had to be fixable.. It just had to be fixable!! I thought to myself.
It just had to be! .. and as you know now. it was - and is.

Joe
Perseverance is powerful.
Thanks for the warning.
Hopefully big brand names are OK.
A young woman was killed here not long ago by a cheap USB charger, sitting in bed with her laptop.

This is something that's been known about for some time, just not been banded about in the public domain. There's no need for panic, though - just take your normal precautions and you may manage to avoid this.

It's one of the reasons that a recent purchase from China, of a 'labelled' product that turned up without said label on the side, is still sitting on the shelf in front of me, in its packaging.

This is the genuine article:

http://www.essexham.co.uk/news/realtek- ... ounds.html

I've posted about it on here before iirc.

Here's the one I ordered - it's the first one at the top of the list on the above page, so might be genuine:

http://www.amazon.co.uk/dp/B009VBUYA0/?tag=sxham-21

However, it has no Keedox brand name anywhere on the device, at all. If you look at the pic's on Amazon, it should have. An email to Keedox to ask how to confirm it was genuine has been ignored.

It's a good example of what to watch for - and is now an £11 paper weight (and not a very good one). Just use your noddle and you should be okay. Although your wallet might end up a little lighter with nought to show for it

That's a good point John, in theory any device could be modified such that when you connect it, it gets up to no good. The last talk I heard was even a TV or BluRay player with HDMI could be compromised if someone had the desire.