Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Kingston recalls some USB drives due to security flaw

A software flaw uncovers password authentication process

Kingston Technology is recalling certain models of its DataTraveler secure USB flash drives in order to update firmware on the thumb drives after a security company found a flaw that could allow a hacker to gain access to the user's password.

On its Web site, Kingston stated that "a skilled person with the proper tools and physical access to the drives may be able to gain unauthorized access to data contained on" some Kingston Secure USB drives.

According to Kingston, the security flaw involves the way the drive processes the password. German security company SySS GmbH apparently created a script that revealed the password authentication method.

A Kingston spokesperson said the company could not comment on any specifics surrounding the security flaw as "anything we say gives other hackers fuel and clues" as to how to break into the drive's security features.

The affected models include the DataTraveler BlackBox; DataTraveler Secure --Privacy Edition; and DataTraveler Elite -- Privacy Edition.

Currently, owners of the drives are being directed to a the company's drive update site for information about returning the drives or updating the firmware.

Lucas Mearian covers storage; disaster recovery and business continuity; financial services infrastructure; health care IT for Computerworld . Follow Lucas on Twitter @lucasmearian , send e-mail at lmearian@computerworld.com or subscribe to Lucas's RSS feed .

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Kingston, Kingston Technology
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: hackers, kingston, security, usb flash drive
Latest Blog Posts
Whitepapers
  • A Governance Guide for Hybrid SharePoint Migrations
    Cloud-based computing represents a powerful new option for managing enterprise content, offering increased flexibility, efficiency, and reduced cost for IT infrastructure, data storage, and applications. However, for a variety of business and technical reasons, most organisations will take a phased approach to adopting cloud-based services, which will require them to continue to maintain their on-premises SharePoint environments during the transition. This white paper, written by Chris Beckett from SharePoint Bits, discusses some of the benefits and risks of hybrid SharePoint deployments, and presents governance considerations that are essential for ensuring a successful migration.
    Learn more »
  • Security Threat Report 2012
    This threat report shares the latest research on hacktivism, online threats, mobile malware, cloud computing, and social network security looking ahead to the coming year.
    Learn more »
  • The Case for Real-Time Networking
    CIOs are facing several powerful trends and inflection points that are defining the new IT landscape, including cloud computing, virtualization, the consumerization of IT, smart computing, and communications to collaboration. Taken individually, each one of these trends will have significant ripple effects throughout the planning and operations of IT network infrastructure. In aggregate, they will have an even more dramatic impact on the way that future network architectures need to be planned and designed. Read on.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments