Comment Re: Full Spectrum Problem (Score 2) 151
Usb devices? The os, and therefore you, decides what happens when usb devices connect.
Nope. USB operates at a lower level than the OS. USB is capable of talking to other pieces of hardware without the OS's involvement (or knowledge). USB even has Direct Memory Access.
Usb is not a magic backdoor, unless your os is seriously flawed.
Yes it is. Many OSes even cooperate by providing APIs for forensic/diagnostic/recovery tools that operate via USB.
Most oses will not autoexec something on an usb stick, for example.
Most oses will not autoexec something on a valid USB stick. The BIOS will though. And just because something is connected via USB doesn't mean it has to tell the truth about what it is. The stick could present as a drive AND a keyboard, with the keyboard inputting commands to run a file on the drive.
The USB can be used to dump memory (and keys) using various methods, the simplest but least effective method is the Cold Boot Attack. DMA Attacks have become more straightforward with USB 3.1 as the controller now has DMA instead of just the PCI it is connected to.