Optimizing Windows Security Features to Block Malware and Hack Tools on USB Storage Devices

Malware replicating via USB storage devices including worms, virus, Trojan horses and other malicious codes together with USB based hack tools such as Pod Slurp and USB Switchblade have accounted for many serious security issues for the last few years. The majority of these malicious codes exploit Windows Autoplay features to automatically launch attacks on host computers transparently to the users. In this paper, we will analyze the vulnerabilities in the default settings of the latest Windows operating systems which allow malware from attached USB storage devices to launch attacks on the computers. We will also propose solutions and patches for the vulnerabilities in form of ready-to-deploy scripts which can be run by any computer users. The solutions will focus on the latest Windows operating systems including Windows XP SP2, Windows Vista, Windows 7, and Windows 2008.