NEWS - June 30, 2010

by Carol~ Moderator - 6/30/10 9:02 AM

Tricked again: Key combination opens Corsair's Padlock 2 flash drive without authorisation

Corsair have pointed out a vulnerability in their USB flash drives with Padlock 2 access protection. The hole allows stored data to be accessed without authorisation. The flash drives have a mini keyboard for users to key in their PIN in order to access the drive. This allows the drives to work independently of drivers and platforms.

However, the password can be deleted via a special key combination, while the stored data remains intact. As a consequence, the data can reportedly be accessed without having to enter a PIN. Corsair have released instructions for solving the problem, but recommend backing up the data beforehand; instructions for securing the drive are available here.

Continued here: http://www.h-online.com/security/news/item/Tricked-again-Key-combination-opens-Corsair-s-Padlock-2-flash-drive-without-authorisation-1030937.html