Formatting infected USB sticks

[GusFG]

I'm wondering what is the best way of formatting USB sticks which might or might not be infected. I'm looking at booting up from a Live USB (linux mint with persistence) and disconnecting the internal SSD of the computer to avoid the possibility of cross contamination. But I'm wondering If I boot off of the live USB and plug in the USB in doubt, is it not still possible contamination could cross to the live USB.
I'm sure it's still possible to get USBs which have a read only switch but do I need to get one of these to be fully secure?

Any thoughts on this would be appreciated

 

[Paul Black]

Hi GusFG,

I'm wondering what is the best way of formatting USB sticks which might or might not be infected. I'm looking at booting up from a Live USB (linux mint with persistence) and disconnecting the internal SSD of the computer to avoid the possibility of cross contamination. But I'm wondering If I boot off of the live USB and plug in the USB in doubt, is it not still possible contamination could cross to the live USB.
I'm sure it's still possible to get USBs which have a read only switch but do I need to get one of these to be fully secure?

[1] When you format a USB, everything on the USB is deleted.
[2] Booting a Linux Live CD/USB is outside of the installed OS so I would think that you should be OK!
[3] What you could do of course, is to change the parameter of what the OS does when a USB is inserted. For example, change it so it gives you the Autoplay box, then just Red Cross it and format the USB.

I hope this helps!

 

[RolandJS]

when a USB is inserted. For example, change it so it gives you the Autoplay box
Paul, at work, not in front of w7pro, is that neato trick done in cntrl-pnl - autorun?

 

[Paul Black]

Hi RolandJS,

Paul, at work, not in front of w7pro, is that neato trick done in cntrl-pnl - autorun?

I think it is Control Panel => AutoPlay.

 

[RolandJS]

aahhh, i meant autoplay

 

[GusFG]

Yeah I'd forgotten about the autoplay/autorun option and I'm sure LInux Mint will have this option. That puts my mind at rest which in this case would mean I wouldn't even have to disconnect the SDD/HDD of the host and could just boot off of the host OS really.

Many thanks folks

 

[Paul Black]

Hi GusFG,

Yeah I'd forgotten about the autoplay/autorun option and I'm sure LInux Mint will have this option. That puts my mind at rest which in this case would mean I wouldn't even have to disconnect the SDD/HDD of the host and could just boot off of the host OS really.

Let us know how it goes!

 

[GusFG]

Will do thanks

 

[Snick]

GusFG
Be advised that USB FlashDrives are inherently unsafe.
The Bios is vulnerable and can be infected, your Anti-Virus, and malware detection is ineffective.
The StuxNet Virus developed by NSA that destroyed the centrifuges in Iran was deployed by infected USB Bios.
Bill

 

[GusFG]

GusFG
Be advised that USB FlashDrives are inherently unsafe.
The Bios is vulnerable and can be infected, your Anti-Virus, and malware detection is ineffective.
The StuxNet Virus developed by NSA that destroyed the centrifuges in Iran was deployed by infected USB Bios.
Bill

Even with the autoplay turned off?

As regards problem PCs was thinking of using it only when SSD/HDD drives are disconnected initially when booting off the USB.

But there will be occasions when I'd be connecting it via my own PC for updating so there is always a chance it will get infected I guess.

Maybe we're all infected but we just don't know it

 

[Snick]

Yes if BIOS IS INFECTED.
Communication takes place with a chipped device via BIOS first thing.
No they are not all infected, they have to be infected with a BIOS update i.e. FLASHING THE BIOS.
Stuxnet was installed by NSA and the flash drives were left in conspicuous places that personnel working at the centrifuge plant in Iran frequented, the picked them up, one was inserted in a drive on the plant net and trashes many slowing the enrichment of uranium..

If you purchase electronics from reputable establishments you are relatively safe. If you watch where you insert your USB stick you are relatively safe. If you take care in surfing the net and have adequate anti-whatever you are relatively safe.

Bill

 

[Snick]

Why are you bootin from USB?
Disconnecting Drives? Why?
Bill

 

[GusFG]

Why are you bootin from USB?
Disconnecting Drives? Why?
Bill

If I've got to scan a drive for logical errors or malware then booting off of the USB to a Linux OS and employing a suite of tools from the USB seems logical.

As for disconnecting drives this helps me to inadvertently avoid booting of the suspect internal drives rather than the USB especially since the USB would be plugged in and there is a chance of cross contamination if I'm not on the ball. May sound unnecessary but it makes me happy

 

[Snick]

Very unnecessary
Cybersecurity is my hobby.
If you boot from USB and access those drives, or they are plugged in, your efforts are in vain.
Why don't you run a VPN?

 

[Snick]

Recommended AV’s, malware scanner, adware scanner, pup scanners
All Free!

 

[GusFG]

Very unnecessary
Cybersecurity is my hobby.
If you boot from USB and access those drives, or they are plugged in, your efforts are in vain.

I don't see how!

Why don't you run a VPN?

VPN for doing what?

 

[Snick]

Are you running OS from USB with HDD or SSD connected via sata on motherboard?

 

[NoN]

Are you running OS from USB with HDD or SSD connected via sata on motherboard?

Call it "Windows To Go"...I thought you could not boot and use HDD for that? Only special USB Keys.

 

[Snick]

That is incorrect.
USB you can run almost any OS
WintoUSB
by Haslo
WintoGo by M$
Most any linux distro.
Black Arch Linux, my fav