Kingston admits "secure" USB drives are flawed
By Barry Collins
Posted on 4 Jan 2010 at 09:18
Kingston is urging customers to return their supposedly "secure" USB drives after discovering that they're not quite as watertight as the company claimed.
A post on Kingston's website claims that "a skilled person with the proper tools and physical access to the drives may be able to gain unauthorised access to data" on three of the company's models. They are the DataTraveler BlackBox, DataTraveler Secure – Privacy Edition, and DataTraveler Elite – Privacy Edition.
Kingston doesn't detail how the drives can be compromised, but the problem is serious enough for the company to request that customers return their drives for a "factory update".
The flaw is particularly embarrassing, given that Kingston claims the Data Traveler Secure drive is "the first USB Flash drive that secures 100% of data on-the-fly via 256-bit hardware-based AES encryption", and that the drive is "specifically designed to meet enterprise-level security and compliance requirements".
The drive requires users to enter a strong password with a minimum of six characters before granting access to the data, automatically wiping the data if a wrong password is entered ten times.
Kingston's website provides details on how to return your drives - UK-based owners should call the company on 01932 738950.
- Flickr redesign: is it enough to tempt photographers back?
- Hands on with the new Google Maps
- Nokia Lumia 925 review: first look
- Why I won't subscribe to Creative Cloud
- GoPro camera strapped to a remote-control helicopter: the ultimate boy's toy
- Acer Iconia A1 review: first look
- Acer Aspire P3 review: first look
- Acer Aspire R7 review: first look
- How we produce the PC Pro podcast
- Google Now draining iPhone battery
- Yes, I write down my passwords
- How to deal with a ransomware attack
- How secure is your Wi-Fi network?
- How QR codes caught out the security pros
- Why I do not trust Do Not Track... yet
- The hard disks you can "secure" with a single-digit password
- Why I've started using a password manager
- Time to kill off CAPTCHA
- Are today's young people Generation I (for insecure)?
- Ransomware that's better made than antivirus software