I'm asking myself what to do after a user gets attacked by BadUSB? (Full scan, boot-time scan, ...?)
Is the "bad usb" stick even able to infect the user's system with malware or other spy tools?
I'm asking myself what to do after a user gets attacked by BadUSB? (Full scan, boot-time scan, ...?)
Is the "bad usb" stick even able to infect the user's system with malware or other spy tools?
The problem with someone being able to execute commands on your machine is that they don't really need a virus at that point. They can use perfectly legitimate tools/commands to obtain and retain ownership of your machine, so anti-virus is rather moot.
The only "right" suggestion for what to do after being victim of an attack is to format the machine and start again. And hope that you were being diligent with your backups.
There are many things that are connected through USB on a pc, even more so on a laptop. An attacker could scan for other vulnerable usb chips in your keyboard, webcam, mouse etc. and infect these as well. At this point clearing the HDD won't help you anymore as your webcam is now infected and will happily reinstall any malware or backdoor the attacker chooses.
As to what a BadUSB device could become; pretty much anything that can be connected to usb, so a networking card to preform a MiTM attack, a keyboard to execute commands, a usb flash drive to install a virus.
So to quote srlabs:
Once infected, computers and their USB peripherals can never be trusted again.