A cybercrime group is mailing out USB drives that install malware on the user’s networks when plugged in.
The FBI stated the USB drives contain “BadUSB” attacks, sent through the mail as impersonations of the US Department of Health and Human Services containing COVID-19 warnings, or as gift cards claiming to be from Amazon.
The cybercriminals have reprogrammed the USB thumb drives to emulate a keyboard to create keystrokes and commands on a PC, spoof a network card and redirect traffic, or install malware. The tools were used to deploy multiple ransomware strains.
The FBI has warned that the BadUSB attacks were delivered on LILYGO-branded devices in August, 2021, and have been received by defence industry targets from November, 2021.
Technology Solutions is warning businesses to be on the lookout for any suspicious-seeming packages. Malware devices can be disguised as promotions, solicitations, advertisements, catalogues – the list is endless.
Train your employees to recognise suspicious devices
The cybersecurity specialists at Technology Solutions can provide resources to train your employees on the latest financially impacting security topics, malware and ransomware threats, and best cybersecurity practises.
Get in touch with them today and start working towards tightening your business security and enhancing your cybersecurity expertise.