Sunday 05 July 2026 09:24:01 GMT+02:00

Netcrook

HomeManifesto
News
Techcrook
Geocrook
WikicrookTeamAppContact
EnglishItalianoArabic

WIKICROOK

Removable media control

Security policy that limits which USB devices can connect to endpoints.

Removable media control is a security policy that limits which USB devices and other plug-in storage can connect to endpoints. Instead of allowing any flash drive, it can restrict devices by type, vendor, serial number, encryption status, or user role. Some organizations also block write access, permit only approved media, or disable ports entirely on sensitive systems.

This matters because USB devices can carry malware, data theft tools, or unauthorized files across network boundaries. In real attacks, removable media is often used to seed infected machines, move tools into isolated environments, or exfiltrate data from air-gapped systems. Defenders use removable media control to reduce that risk, supported by endpoint management, device logging, malware scanning, and allowlists. In practice, strong USB control helps stop both accidental data leakage and deliberate malware spread.

← WIKICROOK index