Today Corsair have released details of a vulnerability that allows unauthorised users to access data on their range of Corsair Padlock 2 USB Flash drives by simply entering a string of keys on the flash drives integrated mini keyboard.
Its allows the users password to be deleted but keeping all the stored data intact for easy access.
This isn’t the first security issue found with the Corsair Padlock USB Flash drives. On the previous model it was also possible to access data by passing the security PIN and allowing access to the users data. Even after being advertised as using 256-bit hardware data encryption by Corsair.
Corsair have released instructions to rectify the issue if you own a Corsair Padlock 2 here.
Via Heise Security