AOH :: ISN-1010.HTM

reconsidering physical security: pod slurping




reconsidering physical security: pod slurping
reconsidering physical security: pod slurping



Forwarded from: Abe Usher  

pod slurping
------------

I've written a report that explores an idea that has been known by the
security community for decades: physical security is important to
information system security.

A year ago a report was published by the Gartner Group warning that
iPods  (and other multi-gigabyte portable 
storage devices) pose a security risk for enterprises
. I've 
created an application (*slurp.exe*) that demonstrates this concept.  
When the program is run from an iPod, it can __very__quickly__ copy
thousands of interesting files* from a PC to an iPod.

The full article and proof-of-concept application are available at:
http://www.sharp-ideas.net 

Cheers,
Abe Usher, CISSP

* Office documents, *.pdf,*.xml, *.dbf, *.log, *.dat, *.txt, *.csv, 
*.htm, *.url, et cetera



_________________________________________
Attend the Black Hat Briefings and
Training, Las Vegas July 23-28 - 
2,000+ international security experts, 
10 tracks, no vendor pitches.
www.blackhat.com 

Site design & layout copyright © 1986-2014 CodeGods