Definition: A USB-propagated worm malware that spreads by copying itself onto removable drives to infect multiple systems.
Explanation
USBFect is a type of malware specifically designed to propagate through USB removable media. It continuously monitors a system for newly connected USB drives and copies itself onto these devices. When the infected USB drive is connected to another computer, USBFect can execute and spread the infection further. It hides within directories that mimic legitimate Windows and Intel system folders to avoid detection. This worm is part of a broader cyberespionage campaign and is notable for its simplicity and effectiveness in environments where USB devices remain in use despite other security measures.
Example
In a recent cyberespionage campaign targeting a Southeast Asian government organization, the threat actor Stately Taurus deployed USBFect to maintain long-term access. USBFect infected USB drives connected to compromised systems, allowing the malware to spread to other computers when those drives were used elsewhere within the network.
Who This Is For
This term is relevant for cybersecurity professionals, IT administrators, and security researchers focused on malware analysis, endpoint security, and removable media threat mitigation.
Related Terms
USB worm, removable media malware, cyberespionage, malware propagation, endpoint security
Also Known As
HIUPAN