Skip to main content
  1. Home
  2. Computing
  3. News

Security researchers publish code that can be used to exploit BadUSB flaw

By

Adam Caudill and Brandon Wilson, a pair of security researchers, published code that could be used to exploit a security flaw dubbed BadUSB.

BadUSB, which was detailed earlier this year by researchers from German firm SR Labs, could be exploited to infect a computer with malicious code and software. However, SR Labs stopped short of releasing code to the public as Caudill and Wilson did. SR Labs opted not to release code in order to give companies that make firmware which controls USB devices time to figure out how to combat the threat posed by BadUSB.

Recommended Videos

Caudill and Wilson believe that by releasing the code to the public, it could force tech firms to scramble and tighten security on USB devices at a faster rate.

While speaking with the BBC, Karsten Nohl of SR Labs said that this move could have the desired effect, but also warned that addressing such a problem is a bit more complex than one might think.

“In the case of BadUSB, however, the problem is structural,” he said. “The standard itself is what enables the attack and no single vendor is in a position to change that.”

What can a hacker do with BadUSB?

A flash drive with BadUSB loaded onto it, when inserted into a computer, can act has a virtual keyboard. This then permits a hacker to execute malicious commands. BadUSB can also infect controller chips in USB devices which are hooked up to that system.

A USB stick with BadUSB on it can also behave like a network card, and redirect a target’s traffic to malicious websites. Plus, during bootup, a BadUSB-loaded flash or external hard drive can infect a computer’s operating system with a virus before it finishes booting up. These are just a handful of ways that BadUSB can make things miserably for you and your computer.

BadUSB isn’t easily uprooted either, unfortunately.

“Cleanup after an incident is hard: Simply reinstalling the operating system – the standard response to otherwise ineradicable malware – does not address BadUSB infections at their root,” SRLabs says. “The USB thumb drive, from which the operating system is reinstalled, may already be infected, as may the hardwired webcam or other USB components inside the computer.”

Right now, your best defense against BadUSB is to be completely sure that any USB device you plug into your computer comes from a trusted source.

It will be interesting to see what happens now that the code is out there for anyone to download.

Konrad Krawczyk
Konrad Krawczyk
Former Digital Trends Contributor
Konrad covers desktops, laptops, tablets, sports tech and subjects in between for Digital Trends. Prior to joining DT, he…
Microsoft is working on something new, but it’s probably not Windows 12
The Surface Pro 11 on a white table in front of a window.

Microsoft appears to be working on a new major update, but if you're hoping for Windows 12, I wouldn't hold my breath. The company has confirmed that it's testing new content via the Insider program in the Dev Channel, and those changes might lead to a patch that's set to be released later this year. However, we're most likely looking at the successor to the current 24H2 build -- namely Windows 11 25H2 -- and not a whole new operating system.

This was first spotted by Windows Central. The publication cites its own sources as it claims that Microsoft is backporting some platform changes to offer better support for Qualcomm's upcoming Snapdragon X2 chip. Those changes will allow devices that house that chip to run Germanium-based Windows 11. Germanium refers to the platform release that the current Windows 11 build is built on, and it looks like the upcoming 25H2 build might also be based on Germanium -- but nothing is fully clear at this point.

Read more
Buy the Alienware x16 R2 gaming laptop with RTX 4090 while it’s $900 off
The Alienware x16 R2 gaming laptop with Evil Dead The Game on the screen.

Buying a gaming laptop with powerful specifications will cost a lot of money, but there are offers out there that make the bill a bit lighter. Here's one from Dell: the Alienware x16 R2 with the Nvidia GeForce RTX 4090 graphics card at $900 off, which drops its price from $3,600 to $2,700. It's still pretty expensive, but you can't ignore than discount of almost $1,000 that you'll be able to spend on monitor deals, video games, or accessories. You should act fast though, as the gaming laptop may return to its regular price at any moment.

Why you should buy the Alienware x16 R2 gaming laptop
The Alienware x16 R2, the successor of the Alienware x16, is one of the fastest gaming laptops you can buy right now. This configuration combines the Nvidia GeForce RTX 4090 graphics card, which our gaming laptop buying guide considers as a top-tier GPU, with the Intel Core Ultra 9 185H processor and 32GB of RAM that our guide on how much RAM do you need says is necessary for streaming or running multiple apps while playing video games. With these specifications, the Alienware x16 R2 won't have any issues in launching the best PC games at their most demanding settings, and you'll have plenty of space to install them on its 2TB SSD with Windows 11 Home.

Read more
Nvidia G-Assist uses AI to configure game settings so you don’t have to
An MSI gaming monitor at CES 2025.

Nvidia's new G-Assist AI assistant is now available on the Nvidia app, ready for GeForce RTX desktop users to try out. The concept first appeared in 2017 as an April Fool's joke before becoming a real tech demo last year, and now, a real-life product.

The assistant is designed to take care of the ever-growing selection of settings PC users need to deal with, including system settings, game settings, and charting performance statistics.

Read more