Mr. Fister passed along the linke to Social Engineering via the USB.  Basically, loading USB sticks with a trojan and then leaving them in places people will pick up, then plug into their corporate computer.

We used to do this with e-mail trojans and talked about doing it with "demo CDs".  It's an age old problem reminding us that the number one security risk to any organization sits between the keyboard and the chair — your employees. 

Advertisements