USB-stick... friends or foes ?

Elite SysAider
I generally agree that USB Sticks are a great danger for company networks.

I don't think the virus and malware issue is the main reason (since we use a trustable anti virus solution) but I think industrial espionage is the point!

What about developing new software or constructig a new car. What if you are a company on the stock exchanges?
And what if someone just copies the new code/construction blueprints/annual balance sheets onto that nifty little storage and hands that to your competitor - or lets say - looses the stick...

imho this is the real threat!

Ever heard from software like: Devicelock ( or Device Control ( Anyone using this?

There IS a little workaround for locking those sticks by renaming/deleting the usbstor.sys but this doesn't really "control" the whole situation.

It is true that USB-Sticks can be a great support but on the other hand you cannot really trust them...

It "might" be a good idea to integrate this "device control" service within the sysaid remote service but I don't think this kind of software is part of sysaids portfolio.

just my 2 cents

This message was edited 1 time. Last update was at Mar. 26, 2009 06:46 AM

The very real problem of Virus' jumping sticks to pc's back to sticks is one of the main reasons to disable (at least) auto-run. It is really too bad that Windows doesn't disable this function out of the box.
SysAid Mod
USB Sticks are for sure a problem. Have recently had near hits with virii users brought from home computers on USB Sticks.
USB sticks are a security concern for many companies. So are CD roms and e-mail. You can't mitigate every security threat, but you can place controls. For us we have writen policies, Device Control software (McAfee DLP), and Antivirus. If someone needs to use there USB stick they call the helpdesk and we place a timed override on the port. We can also track what is downloaded to and off the usb stick in the same system.

Just like anything USB sticks can be helpful, but in the wrong hands they can be dangerous.

IT Security is all about Risk Assessment and placing controls to reduce risk, and like everything else in IT it's on going.
Log and apssword protect any copying to external devices. Users catch on real quick then.
SysAid Wiz
Physical perimeter is not enough...
Stuff like dropbox makes the usb virtual.