USB flash drives to initialize IBM Storwize disk arrays found a file infected with malicious software. The malware is a Trojan known by various names. Kaspersky Lab products detect it as a dropper Trojan. Win32. Reconyc, which installs itself in a temporary folder and after execution loads other malicious software.

The Trojan is not downloaded to the storage systems themselves, but to the computers used to configure their configuration. Depending on the OS used, along with the initialization tool, the malicious file is copied to the folder% TMP% \ initTool (Windows) or / tmp / initTool (Linux and Mac).

The problem is affected by flash drives with the number 01AC585 supplied with the Storwize V3500 (models 2071 01A and 10A, and 2072 12C, 24C and 2DC) and V5000 (models 2077 12C and 24C, and also 2078 12C and 24C). IBM strongly recommends that users of infected devices "safely destroy USB flash drives so that they can not be reused". It is also recommended to scan using antivirus products and make sure that the temporary directories where the infected file was saved are deleted.