Back to blog

Attack code for ‘unpatchable’ USB flaw released

by AprilSix Proof

Computer security researchers identify security flaw in USB

USB devices are ubiquitous, with thousands of devices using the standardised interface to connect to each other. But back in August of this year computer security researchers found a flaw in the firmware of the system that showed USB could be used as an attack tool by cybercrime groups.

This week, two British cybersecurity researchers, Adam Caudill and Brandon Wilson, released a code that they have developed that exploits the flaw. Their code can turn almost any USB-enabled devices into a cyber-attack platform. Speaking to the BBC, the pair say that they released the code to the public in an attempt to force electronics firms to improve defences of the USB system.