USB Switchblade Malware Detected

Centennial Software, a developer of IT asset discovery and security management solutions, has issued a security alert about new endpoint malware, named USB Switchblade.

The malware targets Windows systems and steals corporate information such as passwords, IP data, browser history and auto-fill data, including data used for online banking and other payment systems.

The malware allows hackers to set up ghost admin accounts and administer virtual network computing, which effectively gives them a back door into the system. The hacker can then change the configuration of the computer, set up privileges to obtain more data and remotely access other PCs on the network.

A hacker can download USB Switchblade off the internet and install it onto a USB device. They can then steal data from any unsecured endpoint on a computer.

USB Switchblade works in the opposite way to USB Dumper which steals files from portable storage devices. USB Dumper was detected in October 2006.

Security software, such as Centennial’s DeviceWall solution, can control access to data via USB ports, effectively protecting against malicious attacks. Centennial Software has offices in the USA, UK, Germany and Australia.

Story link: USB Switchblade Malware Detected