Chinese malware intended to infect USB drives accidentally infects networked storage too

2023-06-23 05:31

Malware intended to spread on USB drives is unintentionally infecting networked storage devices, according to infosec vendor Checkpoint.

"Upon returning to his home hospital in Europe, the employee introduced the infected USB drive to the hospital's computer systems, which led the infection to spread.".

Checkpoint believes the infection chain starts when a victim launches a malicious Delphi launcher on the infected USB flash drive.

Doing so triggers a backdoor that loads malware onto other drives as they connect to the infected machine.

The malware poses greater risks to enterprise IT, because infected machines install the malware on any newly connected network drives, but not on drives already connected to a machine at the moment of infection.

"Manipulating numerous files and replacing them with an executable with a USB thumb drive icon on network drives is a conspicuous activity that can draw additional, unfavorable attention."

News URL

https://go.theregister.com/feed/www.theregister.com/2023/06/23/camaro_dragon_usb_malware_spreads/

#chinese #malware #USB