What Is USB Baiting?
USB baiting (or USB drop attack) is a form of social engineering attack, conducted by planting USB sticks, containing malicious software, at places where the targets can generally find them. A USB baiting attack relies on the curiosity of its target, who is likely to plug it into their system to find out the contents or the owner of the drive. Once the USB stick is plugged into a system, the malicious contents have a high probability of spreading across the system/network. Though the chances of malware infection just upon plug-in are rare, the success of the attack remains high. It is highly likely that when the target picks up and plugs an unknown stick into their system, they will also open files or applications without considering the consequences or without giving much thought to security. This process is also known as HID (Human Interface Device) spoofing, where the malware masks the identity of the USB stick to trick the system into assuming it for another device such as a keyboard or mouse, thus, providing it with the privileges of that device.
Learn more: https://aware.eccouncil.org/usb-baiting.html?utm_source=Backlink-USBBaiting&utm_medium=Page













