Reading articles such as this well-written bit by Cory Doctorow, thinking about Cottonmouth, and considering the pervasiveness of potential compromised devices.... you can understand the effectiveness of this attack vector. Then consider the likely reuse of these compromised devices. They are going to be around for a long, long time.
GitHub Link: https://github.com/adamcaudill/Psychson
By the way, trusted USB devices… Excellent opportunistic marketing for a device that was ahead of its time... Smart company.
IronKey USB Drives
- IronKey Enterprise 250 flash drives are FIPS 140-2 Level 3 validated with AES 256-bit hardware encryption.
- Enforce device-specific policies and mitigate risks of data loss by remotely disabling lost or stolen drives.
- A ruggedized, waterproof metal chassis resists physical break-ins and is tamper-proof.