If You Find A USB Stick DO NOT Use It: Beware of the Rubber Ducky Attack
Rubber Ducky USB Attack: How It Works
(with video below) There is a new way you can accidentally install scary malware on your computer today. It is called Rubber Ducky Attack, and it is more serious than it sounds. It comes in the form of a USB stick.
Imagine this: you're in a coffee shop and on the table that you just sat at there is a memory stick, apparently left by the last customer. It may even look brand new, in a small box. What's your natural reaction, would you use it?
You can also find the USB stick in various places, such as malls, restaurants, elevators, etc. – or in certain spots you can't even return it to someone (e.g. the clerk at the coffee shop). Criminals leave these devices behind on purpose, in hopes that whoever finds them will use them. So, what is the danger of these flash drives and what do they do? Here is a must-see.
Watch the video below to see what the Rubber Ducky USB stick can do to you and how it looks inside:
The Memory Stick Reads Your Keyboard
The Rubber Ducky Attack happens when a scammer loads up the memory stick with malicious malware to infect the device it is plugged into. In a nutshell, the compromised memory stick is a keystroke injection tool disguised as a regular flash drive.
It is designed to embed itself into the laptop you're using while it tracks your movements on the device. As a result, it captures sensitive information, such as online banking log-in details and passwords for other online accounts.
Computers and laptops recognize the Rubber Ducky USB as a regular keyboard and accept pre-programmed keystroke payloads at over 1,000 words per minute. What does that mean?
Payloads are made using a simple scripting language and can be used to drop reverse shells, brute force pin codes, inject binaries, and many other automated functions for the penetration tester and systems administrator.
Here is a screenshot of how a Rubber Ducky memory stick looks inside:
The Rubber Ducky stick is very popular among hackers, penetration testers, and IT professionals. With origins as the first IT automation HID using an embedded dev-board, it has since grown into a full-fledged commercial Keystroke Injection Attack Platform.
A Rubber Ducky USB can be found online for sale on specialty sites at a price of $40-$50.
Rubber Ducky USB Attack: How To Avoid
If you find a memory stick just don't use it. It is not yours anyway. Beware of the random find. It is expected that in the next few months we will see an increase of Rubber Ducky scams using crypto-currencies as leverage.