SC Magazine reported that encrypted USB drives from SanDisk, Kingston and Verbatim can be read despite being encrypted. Each manufacturer has issued a warning that certain secure drives can be compromised if a skilled person has the proper tools and physical access to the USB stick. That doesn’t make them very secure does it?
Affected devices include:
- SanDisk's Cruzer Enterprise USB flash drive, CZ22 (1GB, 2GB, 4GB, 8GB)
- SanDisk's Cruzer Enterprise FIPS Edition USB flash drive, CZ32 (1GB, 2GB, 4GB, 8GB)
- SanDisk's Cruzer Enterprise with McAfee USB flash drive, CZ38 (1GB, 2GB, 4GB, 8GB)
- SanDisk's Cruzer Enterprise FIPS Edition with McAfee USB flash drive, CZ46 (1GB, 2GB, 4GB, 8GB)
- Kingston DataTraveler BlackBox (DTBB)
- Kingson DataTraveler Secure – Privacy Edition (DTSP)
- Kingson DataTraveler Elite – Privacy Edition (DTEP)
- Verbatim Corporate Secure USB Flash Drive (1GB, 2GB, 4GB, 8GB)
- Verbatim Corporate Secure FIPS Edition USB Flash Drives (1GB, 2GB, 4GB, 8GB)
Apparently the problem is not with the hardware or firmware, but the actual computer application that accesses the device. SanDisk and Verbatim have updates to address the issue, but there’s nothing from Kingston at this time.
Boy are we glad that we use IronKey USB sticks for our secure encrypted storage.
- John and Mike
(703) 359-0700
digitalsamurai@senseient.com
www.senseient.com
