Preventing data leakage of files copied to USB attached storage

Most companies suffer loss of data through files copied from the company’s devices (desktops/laptops) on an external storage device such as Flash drive/Pen Drive/External HDD. 

Disabling the USB port so that it becomes read-only is the fastest & most basic protection you should adopt if you are looking for free options. It can be easily accomplished by adding an entry to the Windows Registry. However, for this control to stick, the end user shouldn’t have direct permissions to edit Registry. 

Here are the steps:

  • Run “regedit” on your Windows Workstation to launch the Registry Editor
  • Navigate through the next few screens (below)
  • At the end of the config changes, restart your windows or re-plug a storage device (in some cases) to see the changes take effect.
  • Now your USB ports are write protected.
  • Set the “WriteProtect” value to “0” to enable write activity again.

OR, Simply, execute the “reg” files attached at the end of this blog to “disable” or “enable” USB writing as needed.

Software Write blockers – Editing Registry (1/6)
Software Write blockers – Editing Registry (2/6)
Software Write blockers – Editing Registry (3/6)
Software Write blockers – Editing Registry (4/6)
Software Write blockers – Editing Registry 5/6)
Software Write blockers – Editing Registry (6/6)

Or, you could simply execute the files attached here:

Warning:  Serious problems might occur if you modify the registry incorrectly by using Registry Editor or by using another method. These problems might require that you reinstall the operating system. We cannot guarantee that these problems can be solved. Modify the registry at your own risk. The instructions in this blog are for guidance purpose only. We cannot be held liable for any loss or incident occurred due to instructions here.

To know more about Windows Registry, please read this carefully.