Beware of Christmas presents with non-volatile memory
Although applications on USB flash drives can normally only be started by the user, connecting any external flash memory device to a Windows PC can potentially lead to infection, for example when the product is a USB Smart Drive with Autoplay/Autorun. For protection it's best to generally disable Autoplay in Windows.
Misleading options displayed by the Autoplay function can trick users into inadvertently infecting their systems. Plugging in a Conficker infected USB drive results in a specially crafted icon appearing in the Autoplay dialogue which appears to be a folder; clicking on this folder icon activates the worm.
This trick no longer works in Windows 7 because Microsoft has completely removed the option for starting programs from the dialogue for writeable memory such as USB flash drives, memory cards and external hard disks. This change, however, does not apply to CDs and DVDs.
The Internet Storm Center recommends that users generally format any unsolicited mobile storage device they receive, even if it's marked "Joe's Bachelor Party Pictures" to arouse users' curiosity.
Copyright 2010. Site powered by BitDefender