Kaspersky, a global cybersecurity firm, warns Filipinos against casual USB plugging without prior scanning, revealing that 36.8% of Philippine users faced local threats from January to December 2023. These threats, including worms and file viruses, often spread through removable media like flash drives, CDs, and DVDs.
“USBs are a boon to everyone who uses them, cybercriminals included, and a bane for those unaware that such offline hardware could cause a catastrophe,” said Yeo Siang Tiong, General Manager for Southeast Asia at Kaspersky.
Yeo pointed out that cyberattacks don’t come solely from the internet and that attackers are finding ways to get to devices, like with the use of these seemingly plain removable media, which we could prevent with proper USB hygiene.
READ:
Kaspersky: Digital stalking affects nearly a quarter of online daters
PH ranks 4th in Kaspersky’s list of countries most targeted by online threats
USB or thumb or flash drives is a convenient and handy storage that can fit large files and can last for at least a decade.
In Southeast Asia, the Philippines ranks third in local threat attacks, following Vietnam (53.3%) and Indonesia (41.1%), as per Kaspersky Security Network (KSN) data. KSN aggregates cybersecurity data from millions of users globally, with the Philippines ranking 76th worldwide in 2023, down from 72nd in 2022.
Despite secure USB drive manufacturers adhering to standards like FIPS 140, some encrypted drives remain vulnerable. Kaspersky categorizes USB danger levels into Serendipitous, Professional, and State-sponsored, depending on attackers’ resources and motivations.
To safeguard against USB threats, Kaspersky recommends:
- Configure your OS to avoid running anything from USBs.
- Enable auto-scanning with antivirus software upon USB insertion.
- Regularly update your OS to patch vulnerabilities, including AutoRun exploits.
- Avoid copying executable files from unknown sources, download software from trusted sites.
- Keep work and personal USB drives separate to prevent data mingling, especially in shared environments.
- By following these precautions, users can minimize the risk of USB-related cyber threats and protect their devices and data from potential harm.