← Back to Topics

USB Security Vulnerabilities

The cluster discusses security risks of USB devices, focusing on BadUSB attacks where malicious USBs impersonate keyboards or HID devices to inject malware and keystrokes. Commenters warn against plugging in untrusted USBs and highlight firmware exploits and attack vectors.

📉 Falling 0.3x Security
3,130
Comments
19
Years Active
5
Top Authors
#5983
Topic ID

Activity Over Time

2008
2
2009
18
2010
49
2011
103
2012
45
2013
148
2014
262
2015
221
2016
288
2017
164
2018
241
2019
267
2020
222
2021
217
2022
193
2023
309
2024
220
2025
159
2026
2

Top Contributors

mschuster91 (17) userbinator (12) gruez (11) monocasa (10) lrvick (10)

Keywords

inversepath.com USB arstechnica.com HN online.wsj A5 TCP ANY B5 PC usb device devices cable attack keyboard firmware computer attack vector pins

Sample Comments

fhars Mar 14, 2025 View on HN

No, USB is vulnerable to malicious devices.

craftyguy Sep 5, 2018 View on HN

It's a USB device, it already has the ability to do terrible things[0] when you plug it in.0. https://www.wired.com/2014/07/usb-security/

oblio Mar 2, 2023 View on HN

You mean you're worried about USB attacks?

Buge Sep 15, 2018 View on HN

You're not safe plugging a random USB into your computer. It can pretend to be a keyboard and install malware.

jokoon Aug 6, 2020 View on HN

I dont understand. Is USB just always insecure because of hardware?

Tepix Aug 20, 2022 View on HN

You haven't heard of BadUSB?Don't plug in untrusted USB devices.

kurtisc Nov 7, 2017 View on HN

Are there any situations where this would be a vulnerability but using a USB device as a HID would not?

yjftsjthsd-h Nov 9, 2023 View on HN

USB is an attack vector; if it's not exploiting your USB driver it's connecting your data pins to mains power. Keyboards are an air gap.

Devilboy Feb 13, 2011 View on HN

It has multiple attack vectors, not just USB.

tokenizerrr Oct 1, 2015 View on HN

How do you know your mouse or keyboard isn't going to attack your machine through the USB port?