The Microsoft Windows Operating Systems use the AUTORUN.INF file from removable drives in order to know which actions to perform when a new external storage device (USB drive or CD/DVD) is inserted into the PC. The AUTORUN.INF file is a configuration file that is normally located in the root directory of removable media and contains, among other things, a reference to the icon that will be shown associated to the removable drive or volume, a description of its content and also the possibility to define a program which should be executed automatically when the unit is mounted.
This feature has been widely criticized by the security community becuase it is used by malware in order to spread by infecting as soon as a new drive is inserted in a computer. The malware achieves this by copying a malicious executable in the drive and modifying the AUTORUN.INF file so that Windows opens the malicious file silently as soon as the drive is mounted. The most recent examples of this are the W32/Sality, W32/Virutas and also the W32/Conficker worm which, in addition to spreading via a vulnerability and network shares, also spreads via USB drives.
Stealing information – or just reading it without permission – is a lot easier from any PC. All you have to do is stick a USB thumb drive into a port, copy some files, and put the drive back into your pocket. Protecting your USB is fine but what about USB ports protection? Your important confidential data in your personal computer can be at risk if someone approaches your PC when you are away from home. Whether you’re an IT professional, a small business owner, or just someone who cares about sensitive data security, this software can help protect you against data theft. Secure your PCs endpoints. You will be able to restrict the use of the USB ports and other endpoints on your desktop PC or notebook and effectively prevent unwanted data introduction or data leakage from your PC.