Updated:06:15 PM EST Nov 13

this is ggmania.com subsite USB Stick That Can BSOD Any Windows 10 Device Even If Locked - TechAmok

USB Stick That Can BSOD Any Windows 10 Device Even If Locked - [security]
03:17 PM EDT - May,02 2018 - post a comment

Back in July 2017, Bitdefender researcher Marius Tivadar discovered an exploit in Windows operating systems that allows anyone with physical access to a computer to invoke a BSOD by simply inserting a USB thumb drive loaded with a bit of software. He reported the issue to Microsoft, but at the time they brushed him off. Now, he's stepping out with details and a demonstration to raise awareness of this vulnerability. What makes this exploit so intriguing is that Tivadar's proof-of-concept showed that he could force a BSOD even if the Windows machine was locked. Tivadar writes, "One can generate [a BSOD] using a handcrafted NTFS image. This Denial of Service type of attack, can be drive from user mode, limited user account or Administrator."

He was able to verify his findings using Windows 7 Enterprise, Windows 10 Pro and Windows 10 Enterprise. The attack is possible because Auto-Play is enabled by default, which causes the operating system to automatically access the USB thumb drive, which executes the code found on the NTFS image. However, even disabling Auto-Play won't completely save you from a BOSD according to Tivadar.

Any program that attempts to access the USB thumb drive (for example, an automatic system scan by Windows Defender) would trigger a BSOD. This could be a particularly nasty way of messing with a friend or coworker by plugging a USB thumb drive into the back of their desktop without them knowing. Or imagine a scenario where you're engaged in a high-profile gaming tournament and someone decides to "take you out" with a BSOD. Other more nefarious attacks could be carried out through this method as you might imagine as well. Scenarios where people lose valuable work are obvious. However, if this vulnerability finds its way to server level operating systems (which was not proven out yet), an entire infrastructure could theoretically be brought down.

Add your comment (free registrationrequired)

Short overview of recent news articles

Nov,13 2018 NVIDIA GeForce 416.94 WHQL Drivers
Nov,13 2018 Windows 10 October Update Version 1809 re-released
Nov,13 2018 Intel i9-9980XE: Disappointing Overclocker, But Good Stock
Nov,13 2018 Apple Rolls Out iPhone X Display Replacement Program
Nov,13 2018 Intel Shows Off Its 5G Modem, Bound for Phones, PCs and More
Nov,13 2018 Eiza Gonzalez Is An Amazing Talent!
Nov,13 2018 Emily Ratajkowski In A Bikini Will Mess Your Brain
Nov,12 2018 Stan Lee Has Passed Away at the Age of 95
Nov,12 2018 Steam Bug Allowed Games to be Downloaded for Free
Nov,12 2018 Xbox Black Friday Deals Include Console Price Drop
Nov,11 2018 Mr Bean in Room 426 - Episode 8
Nov,11 2018 Samsung will release over 1 million foldable phones in the first
Nov,11 2018 This Trick Won The Magic World Championships
Nov,10 2018 Intel Core i9-9900K Re-Reviewed, 95-Watt TDP Results
Nov,10 2018 Apple BANS third parties from selling refurb Macbooks on Amazon
Nov,09 2018 Amazon Will Sell New Apple iPhones, iPads, and More
Nov,09 2018 Samsung Is Bringing the Linux Environment to Smartphones
>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs