Re: reconsidering physical security: pod slurping

From: Harlan Carvey (keydet89_at_yahoo.com)
Date: 06/13/05

  • Next message: Matt Ostiguy: "Re: Scripted Software removal (Encrypting Credentials)" 
    Date: Mon, 13 Jun 2005 10:09:01 -0700 (PDT)
To: focus-ms@securityfocus.com

    None of this is really all that new. It started with
    diskettes, and has moved on to USB removeable storage,
    digital cameras, iPods, etc. The issue remains the
    same, regardless of the actual storage device.

    --- Abe Usher <abe.usher@sharp-ideas.net> wrote:

    > pod slurping
    > ------------
    >
    > I've written a report that explores an idea that has
    > been known by the
    > security community for decades: physical security is
    > important to
    > information system security.
    >
    > A year ago a report was published by the Gartner
    > Group warning that
    > iPods <http://www.apple.com/ipod/> (and other
    > multi-gigabyte portable
    > storage devices) pose a security risk for
    > enterprises
    >
    <http://www.infoworld.com/article/04/07/06/HNipodsrisk_1.html>.
    > I've
    > created an application (*slurp.exe*) that
    > demonstrates this concept.
    > When the program is run from an iPod, it can
    > __very__quickly__ copy
    > thousands of interesting files* from a PC to an
    > iPod.
    >
    > The full article and proof-of-concept application
    > are available at:
    > http://www.sharp-ideas.net
    >
    > Cheers,
    > Abe Usher, CISSP
    >
    > * Office documents, *.pdf,*.xml, *.dbf, *.log,
    > *.dat, *.txt, *.csv,
    > *.htm, *.url, et cetera
    >
    >
    >
    ---------------------------------------------------------------------------
    >
    ---------------------------------------------------------------------------
    >
    >

    ------------------------------------------
    Harlan Carvey, CISSP
    "Windows Forensics and Incident Recovery"
    http://www.windows-ir.com
    http://windowsir.blogspot.com
    ------------------------------------------

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

  • Next message: Matt Ostiguy: "Re: Scripted Software removal (Encrypting Credentials)"

    Relevant Pages

    • Re: mp3 goodness
      ... but hace teh quite good size of storages. ... Will an iPod of some sort ... reasonably cheap with quite a slick interface. ... they tend to be under 10GB in size so less song storage. ...
      (uk.sport.football)
    • Re: PCanywhere security
      ... how about letting employees store their work on ... What someone puts in their storage space, ... As a security controller for our company, I can assure you that I would ... new firewall rules, only select individuals get external access, and ...
      (comp.security.firewalls)
    • Re: PCanywhere security
      ... how about letting employees store their work on ... What someone puts in their storage space, ... As a security controller for our company, I can assure you that I would ... new firewall rules, only select individuals get external access, and ...
      (comp.security.firewalls)
    • CFP: StorageSS 08
      ... 4th International Workshop on Storage Security and Survivability ... storage protection deployment ... storage encryption techniques (modes of operation, ...
      (sci.crypt.research)
    • Re: Removing Toscaninis Chains of Penance
      ... As of the last time I was in the building, about a year ago, the "security" ... my iPod in with me -- no way I'd leave that in my car, even in Beverly Hills. ... That leaves New York as the logical source for "liberation," and I can't say ...
      (rec.music.classical.recordings)
    • Quantcast