Cyber criminals are mailing out USB drives that install ransomware
According to the FBI, a cybercrime group has been attempting to compromise devices via thumb drives. The malicious group has been mailing out USB thumb drives, hoping that recipients will fall for the trick and plug them into their devices, effectively installing ransomware on their networks. The drives reportedly contain BadUSB attacks and were sent via the United States Postal Service and United Parcel Service. The packages also contained messages claiming to be the US Department of Health and Human Services, claiming that what was on the drive was a Covid-19 warning. Some recipients received USBs with a gift card claiming to be from Amazon.
BadUSB exploits the USB standard versatility and allows an attacker to reprogram the tool to perform malicious acts such as emulating a keyboard to create keystrokes and commands on a computer or install malware prior to the system booting. In some cases, the BadUSB attacks can allow an attacker to spoof a network card and redirect traffic. According to security researchers, BadUSB attacks are not common. However, one campaign in 2020 conducted by the FIN7 group gained traction. The FBI warned that the BadUSB attacks were shipped on LILYGO-branded devices and delivered to organizations in the defense, transportation, and insurance industries.
OODA Loop provides actionable intelligence, analysis, and insight on global security, technology, and business issues. Our members are global leaders, technologists, and intelligence and security professionals looking to inform their decision making process to understand and navigate global risks and opportunities.
You can chose to be an OODA Loop Subscriber or an OODA Network Member. Subscribers get access to all site content, while Members get all site content plus additional Member benefits such as participation in our Monthly meetings, exclusive OODA Unlocked Discounts, discounted training and conference attendance, job opportunities, our Weekly Research Report, and other great benefits. Join Here.
For more information please click here. Thanks!
Already a member? Sign in to your account.
Black Swans and Gray Rhinos
Now more than ever, organizations need to apply rigorous thought to business risks and opportunities. In doing so it is useful to understand the concepts embodied in the terms Black Swan and Gray Rhino. See: Potential Future Opportunities, Risks and Mitigation Strategies in the Age of Continuous Crisis
Explore OODA Research and Analysis
Use OODA Loop to improve your decision making in any competitive endeavor. Explore OODA Loop
The greatest determinant of your success will be the quality of your decisions. We examine frameworks for understanding and reducing risk while enabling opportunities. Topics include Black Swans, Gray Rhinos, Foresight, Strategy, Stratigames, Business Intelligence and Intelligent Enterprises. Leadership in the modern age is also a key topic in this domain. Explore Decision Intelligence
We track the rapidly changing world of technology with a focus on what leaders need to know to improve decision-making. The future of tech is being created now and we provide insights that enable optimized action based on the future of tech. We provide deep insights into Artificial Intelligence, Machine Learning, Cloud Computing, Quantum Computing, Security Technology, Space Technology. Explore Disruptive/Exponential Tech
Security and Resiliency
Security and resiliency topics include geopolitical and cyber risk, cyber conflict, cyber diplomacy, cybersecurity, nation state conflict, non-nation state conflict, global health, international crime, supply chain and terrorism. Explore Security and Resiliency
The OODA community includes a broad group of decision-makers, analysts, entrepreneurs, government leaders and tech creators. Interact with and learn from your peers via online monthly meetings, OODA Salons, the OODAcast, in-person conferences and an online forum. For the most sensitive discussions interact with executive leaders via a closed Wickr channel. The community also has access to a member only video library. Explore The OODA Community