Flash drives that came with IBM Storage contains malware
IBM warns of malware that got shipped on flash drives that came with their storage systems.
The company recommends storage system customers who received drives with V3500, V3700 and V5000 Gen 1 systems destroy them to prevent replication.
As per IBM, they are urging customers to destroy flash drives it shipped to storage system customers because they contain malware.
Last Tuesday, the company has announced that an unknown number of USB flash drives that they have shipped that contain the initialization tool for Storwize systems are compromised with malware.
They highly recommend destroying the flash drives that came along with the V3500, V3700 and V5000 Gen 1 systems in order to prevent spreading the malicious code.
This is how this code spreads. Basically when the initialization tool is launched using the USB, it would copy itself to a temporary folder on the hardrive of the computer it was connected to.
It has been determined that the malware contains code from the Reconyc trojan malware family which targets Russia and India as per Kaspersky Lab.
Although the malware has been copied over onto the hard drive of the victims device, it does not execute during initialization.
IBM recommends users who have already inserted the drive into their systems run an antivirus system to remove the malware. Users can also remove the directory containing the identified malicious file.
As of this writing, it is unclear how the malware got into the flash drives and has not given any further comment about the situation.