Kingston recalls some USB drives due to security flaw
A software flaw uncovers password authentication process
Computerworld - Kingston Technology Co. is recalling certain models of its DataTraveler secure USB flash drives in order to update firmware on the drives after a security company found a flaw that could allow a hacker to gain access to a user's password.
On its Web site, Fountain Valley, Calif.-based Kingston stated that "a skilled person with the proper tools and physical access to the drives may be able to gain unauthorized access to data contained on" some of its USB drives.
According to Kingston, the security flaw involves the way the drives process passwords. German security company SySS GmbH apparently created a script that revealed the password authentication method.
A Kingston spokesperson said the company would not comment on any specifics surrounding the security flaw, because "anything we say [could give] other hackers fuel and clues" as to how to break into the drive's security features.
The affected models include the DataTraveler BlackBox, DataTraveler Secure–Privacy Edition, and DataTraveler Elite–Privacy Edition.
Currently, owners of the drives are being directed to
Lucas Mearian covers storage, disaster recovery and business continuity, financial services infrastructure, and health care IT for Computerworld. Follow Lucas on Twitter at @lucasmearian, send e-mail to email@example.com or subscribe to Lucas' RSS feed .
Read more about Data Storage in Computerworld's Data Storage Topic Center.
- Data Warehouse Augmentation: The Queryable Data Store While organizations have, to date, been busy exploring and experimenting, they are now beginning to focus on using big data technologies to solve...
- Rebranded Quadmark revamps its IT solutions with Google Apps Switching to Google Apps halved Quadmark's IT admin costs while achieving 10% time savings per employee. The global consulting firm now spends 80%...
- CrashPlan PROe Security Because mobile laptops often are connected to unsecured networks, a very high standard of security is required to ensure privacy.
- Protecting Digitalized Assets in Healthcare Healthcare providers face an urgent, internal battle every day: security and compliance versus productivity and service. For most healthcare organizations, the fight is...
- Live Webcast LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- Make or Break: New Auto Products Must Go To Market On Time This Webcast quantifies the value of time to market for the auto industry and highlights how Primavera Enterprise Portfolio Management can help organizations. All Data Storage White Papers | Webcasts