American Dental Association Mails Malware-Laced USB Drives to Thousands

M

Mihir :-)

Thread author
Content source
http://www.infosecurity-magazine.com/news/american-dental-association-mails/
The American Dental Association (ADA) has inadvertently mailed malware-laced USB thumb drives to thousands of dental offices nationwide.

The organization sent out 37,000 of the devices to its members before a discussion on a security forum revealed that malware was present on at least some of the drives.

The drives contained a PDF file of dental procedure codes, but some of them, which were sourced from China, also had malicious code embedded that redirects recipients to a malware-serving website. The ultimate payload is used to gain control of a user's Windows computer.

The ADA told independent security researcher Brian Krebs that the supply chain is to blame, and that only a fraction of the drives are actually infected.

“Of note it is speculated that one of several duplicating machines in use at the manufacturer had become infected during a production run for another customer,” the ADA said. “That infected machine infected our clean image during one of our three production runs. Our random quality assurance testing did not catch any infected devices. Since this incident, the ADA has begun to review whether to continue to use physical media to distribute products.”

Read more American Dental Asso. Mails Malware-Laced USB Drives to Thousands
 
  • Like
Reactions: Der.Reisende, frogboy, Jrs30 and 3 others
OokamiCreed

OokamiCreed

Level 18
Verified
Honorary Member
Top Poster
Well-known
May 8, 2015
881
To be honest, I had no idea that USB drives were so... loosely tossed around to others. I think a lot of the time we just give criminals a hole more than they end up making one themselves. It's truly sad.
 
Last edited:
  • Like
Reactions: Der.Reisende, frogboy, Jrs30 and 2 others
jamescv7

jamescv7

Level 85
Verified
Honorary Member
Mar 15, 2011
13,070
The problem nowdays in hospitais where they tend to put the system into LUA however out to date OS. And in unfortunate matter, the system is already likely infected due to autorun based attacks
 
  • Like
Reactions: Der.Reisende
D

Der.Reisende

Level 45
Honorary Member
Top Poster
Content Creator
Malware Hunter
Dec 27, 2014
3,423
Shocking article, thank you for sharing @Mihir :-)
Seems as if it's the best practice to perform a scan on your new purchased USB once u plug it in... I think most of them will be from China...
Makes the anti-autorun-option of nowadays AVs even more vital.
 
You must log in or register to reply here.

Similar threads

MuzzMelbourne
    • Sad
    • Like
    • Thanks
American Dental Association hit by new Black Basta ransomware
Replies
0
Views
598
News Archive
MuzzMelbourne
MuzzMelbourne
silversurfer
    • Like
    • +Reputation
USB drive malware attacks spiking again in first half of 2023
Replies
0
Views
1,266
News Archive
silversurfer
silversurfer
nicolaasjan
    • Hundred Points
    • Applause
    • Like
Block Windows 11 from encrypting drives during installation
Replies
3
Views
598
Windows 11
nicolaasjan
nicolaasjan

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top