Thumbdrives are probably the biggest phyical security hazard today.
If I was in charge ,the computers at my workplace would have all those ports shut off,maybe phyically blocked as well.Employees routinely bring in thumbrives full of music and vacation pictures to show others or play while working.From a security standpoint,any company that allows this is foolish.
Unfortuneately some expensive software uses "secure" thumbdrives as license keys;that makes disconnecting the port a problem.
In reading the article, there as talk about unknown browsers scanning these systems.
This indicates, at least to me, a very real problem with network security and internet security. Sensitive systems should not be on the internet. If it’s absolutely necessary for remote access, then someone should have to physically enable access. And, as soon as the remote work is done, access is removed.
With thumb drives, it’s possible to deny ordinary users the rights to run executables. I believe Sandisk is notorious for having some sort of stupid executable that runs when you insert the thumb drive. That’s the kind of thing you can’t allow in the interests of security.