A day after researchers declared Linux having more vulnerabilities than Windows, Google now makes a free tool to be used by Linux systems to avoid potential USB keystroke attacks. The software would be running background to monitor any suspicious activities from a plugged USB, and notify a user about potential attacks. This was published by Google in its GitHub for Linux PCs.
USB keystroke attacks could be bad, if not worse. Though itโs hard for an attacker to achieve this feat, once a thumb drive is directly plugged into PC, that would give the attacker full admin privileges for exploitation. This was succeeded by the US against Iranโs nuclear plans in the past. Thus, such attacks top have the potential to exploit very badly.
A mere precaution rather than cure
Now, Google made software thatโs more like the first level of defense, which helps users to sense any potential attacks. As the software, called USB Keystroke Protection aims for alerting the user rather than completely vanishing it. Itโs more like a precaution rather than a cure. Yet, itโs useful for at least knowing the incoming threat.
While these keystrokes are initially developed for helping admins in few system tasks, but itโs re-engineered by attackers to run malicious code for their advantage. Sebastian Neuner from Googleโs Information Security Engineering Team said,
โThe tool is not a silver bullet against USB-based attacks or keystroke injection attacks since an attacker with access to a userโs machine (required for USB-based keystroke injection attacks) can do worse things if the machine is left unlocked.โ
This software tool will block any keystroke injection devices and works along with any existing USB defense tools as USBGuard. It monitors and collects Information about potential USB threats and logs into Syslog. Further, it even ejects the USB drive from OS by unbinding the driver if needed. The toolโs an open-source, thus free to use. Itโs available on Googleโs GitHub page for download. Itโs like a favor Google doing for Linux, for using its kernels as an Android base.