According to SR Labs, the failsafe method to eliminate this threat is to simply disable the ability to update the controller's firmware. The attack described is very sophisticated and in the case of Apricorn's products would require advanced knowledge of our USB controller, a leaked version of our firmware, the programming tool to update our controller, the password used for our programming tool, and an in depth understanding of the device's functionality, etc. SR Labs demonstrated a vulnerability in one USB device that allowed malicious code to be programmed into the USB controller through a firmware update process. In the event that no recovery PINs were set and both the User and Admin PINs are forgotten, the drive can be reset and used again but all of the device's data will be lost as a result of the reset.īadUSB is a theoretical exploit that was presented by SR Labs at the Black Hat conference in August of 2014. Additionally the Admin can generate a new User PIN(s) from within the Admin mode. If Recovery PINs were not created at initial setup, the Admin PIN can be used to unlock the drive and recover the data.
Once the new User PIN is set up, you will be able to unlock the drive and access your data. If your drive was issued by your workplace, your IT Administrator/Help Desk should be able to provide you the recovery PIN. If you forget your original user PIN, the recovery PINs will allow you to create a replacement User PIN. If your device has a “Configurable” symbol on it, up to 4 recovery PINs can be programmed onto the device (typically by the Admin during initial configuration). Follow the steps in the manual to remove the User PINs (which will also remove all recovery PINs and self-destruct PIN) and then add new User PIN(s). All internal componentry of this keypad USB drive is protected from physical tampering with a layer of hardened epoxy, and the firmware is locked down which prevents any modifications making it immune to malware attacks such as BadUSB.Īccess the drive using the Admin PIN. It also thrives where software-based encrypted drives won't even function such as embedded systems, machinery, and any equipment in possession of a powered USB port and storage file system. Completely cross-platform compatible and OS agnostic the Padlock 3 thrives with Windows, Linux, Mac, Android, Chrome. All Data in this hardware encrypted hard drive is encrypted on the fly and the PINs and Data remain encrypted while the drive is at rest. Software-Free, 100% hardware-based 256-bit AES XTS encrypted, onboard keypad usb drive is PIN authenticated, and ultra-fast USB 3.1 (3.0) data transfer speeds. Pocket-sized to securely carry your most sensitive data wherever you go, the Aegis Padlock 3 comes in a huge variety of storage capacities in both HDD and high-speed SSD.
0 kommentar(er)
