Cybersecurity is indisputably positioned as a strategic subject for all organizations. In this context, many of them are equipped with traditional solutions (antivirus, firewall, etc.) to limit their exposure to risk. Yes, but here, beyond these important elements, it is also useful to think of physical media such as USB devices which represent a real threat for many organizations.
Any intrusion is not done remotely
First of all, almost 30% of infections come from USB media. Behind this simple seemingly risk-free storage device can actually hide big threats. These keys can indeed contain malware that will infect the organization’s information system and have unfortunate consequences: identity theft, industrial espionage, dissemination of malware, theft of passwords, blocking of critical systems, etc.
Know your organization well and analyze the points of vulnerability
Taking into account the dangerousness of the use of USB devices is therefore a key point to integrate into its cyber governance. In this sense, it is fundamental to properly map your organization and to know all its points of vulnerability. It should also be noted that this culture of vigilance with regard to the use of USB media must concern all employees of the organization, but not only. This also applies to external partners, maintenance providers, suppliers, etc. This consideration of the whole ecosystem is strategic and will be the assurance of being able to protect oneself effectively and durably. Of course, if certain organizations are sensitized and equipped to deal with these threats (OIVs, regalian structures, etc.), many others are still little or not equipped, or worse, not sensitized.
Simplify the use of removable media
So how do you do it? On this point, it is important to deal with this problem as simply as possible. It is in this context that white stations are starting to develop on a large scale. Their objective is simple, they must analyze and decontaminate the USB devices inserted therein. Concretely, it is enough to connect a USB device on a white station: the analysis is carried out in a few minutes then the peripheral is ready to be connected on the network of the organization. With regard to these elements, it is therefore perfectly understood that the concept of ergonomics is fundamental and that devices must be integrated at different strategic locations in the organization: entrances, meeting rooms, corridors, access to sensitive areas, etc.
It therefore appears that the use of USB media is a central subject to integrate into its cybersecurity governance to protect itself from major risks that could compromise its information system or its industrial tool.
By Christophe BOUREL President of KUB Cleaner