Encrypted Device USB Flash Drive Vulnerability Problem.
Just Recently, news was released that some Encrypted USB Flash Drive storage drives have a loop hole within their encrypting feature. Truly, encrypted device security remains important today.
There are quite a few companies and individuals out there that use thumb drives equipped with encryption capabilities. Companies use encrypted USB thumb drives to secure sensitive or private data. This is a sensible idea as there have been far too many instances of Storage Devices being lost containing confidential personal and business data. Even our own military uses secret plans for troop movement which is a lot of times stored in portable USB storage units. Thus, having a flash drive that automatically encrypts your data is a good idea. In like fashion, if you lose your USB Drive, identity thieves won’t be able to do anything with your personal information. Your secret info is unless if they don’t have your password to unlock the secure drive.
Is Encrypted Storage a Default on Your Flash Drive?
Be cautious, Sandisk sells many top end USB drives. In fact, they don’t always tell you your drive’s encrypted. So where can this be a problem? In truth, you might store all your photos on a Sandisk USB drive. If it’s encrypted and you did not know, and later it fails, your data’s lost for good. USB drive manufacturers need to tell you that you have an encrypted USB drive. In addition, if your USB flash drive breaks, data recovery service companies might not be able to get around the encryption. Above all, know what you as a consumer have purchased.
Encryption Procedures on USB Drives.
One issue with these devices, stated by SanDisk, there is a flaw in their encryption procedure. Basically, some versions of their Cruzer Enterprise flash drives contain a vulnerability. And, it could allow unauthorized individuals to access encrypted data on your USB stick. SanDisk made sure to point out, the flaw was not within their drive’s hardware or firmware. In fact, it’s in the code that accompanies the drive and runs on the user’s computer. Encrypted device security issues are real people.
Kingston Technology had a similar security flaw within their devices (based upon the same vulnerability). They released a Security Bulletin regarding a potential threat from hackers. And, this threat allows a hacker to access encrypted data on USB drives. Kingston’s Bulletin didn’t provide much information other than to advise affected customers to contact Kingston’s Technical Support. However, one thing that this Bulletin did explain, was that a “skilled person” with the proper tools and access to the drives might be able to gain access to encrypted data”.
Frankly, it’s pretty unfortunate that these so-called secure and encrypted devices are at risk. The vulnerability of this type of attack is real.
Encrypted Device, Flash Drives Affected by this USB Flash Drive Security Flaw.
- Cruzer Enterprise USB flash drive, CZ22.
- Sandisk Cruzer Enterprise FIPS Edition USB flash drive, CZ32.
- The Cruzer Enterprise with McAfee USB flash drive, CZ38.
- The Cruzer Enterprise FIPS Edition with McAfee USB flash drive, CZ46.
Kingston DataTraveler BlackBox (DTBB).
Kingson DataTraveler Secure – Privacy Edition (DTSP).
Kingson DataTraveler Elite – Privacy Edition (DTEP).
We all know that USB Drives are portable and extremely useful. Therefore, use them to store personal or business information. In addition, make sure you do your homework on the USB Drive that you are interested in.
For information on thumb drive recovery, click here.
Until Next Time!
eProvided Data Recovery Services