As a programmer I can attest that any drive that is not scanned and executes any present .exe can easily have a completely transparent (on the user end) automatically executed payload that could do just about anything in this scenario and nobody would have any idea.
Writing code that does whatever you want through background processes/threads and takes less than 10-20 seconds to drop as a payload from an autorun USB is trivial at best.
In fact I'd say most any consumer grade electronics is vulnerable to this as would be most private sector companies who don't explicitly whitelist external drives... and most don't because of ease of use and functionality for their end users.
Astounding to see that kind of lack of foresight (or in this case....nefarious intended foresight) in a fucking VOTING machine though....
As a programmer I can attest that any drive that is not scanned and executes any present .exe can easily have a completely transparent (on the user end) automatically executed payload that could do just about anything in this scenario and nobody would have any idea.
Writing code that does whatever you want through background processes/threads and takes less than 10-20 seconds to drop as a payload from an autorun USB is trivial at best.
In fact I'd say most any consumer grade electronics is vulnerable to this as would be most private sector companies who don't explicitly whitelist external drives... and most don't because of ease of use and functionality for their end users.
Astounding to see that kind of lack of foresight (or in this case....nefarious intended foresight) in a fucking VOTING machine though....