Alright, I was recently doing some research about how my PC could get infected by insertion of an infected USB drive & found that most malware relies on the execution of autorun.inf. Now, since I have Windows 10 with autoplay enabled, whenever I insert a new USB drive, windows by default asks me what to do i.e. Open folder to view files, Take no action, Run the application that is configured to run in autorun.inf etc. Now, since I always follow certain security measures, I never run autorun.inf, instead I open the folder to view files & if I find a doubtful exe file, I would use Sandboxie to test that file.
So I wanted to know if malware exists for USB drives that can execute automatically in the background on insertion without asking any permission or indication whatsoever? Are there any tools which I can use to prevent such auto executing malware if they exist? While researching, I found some tools like USB Immunizer which modify the autorun.inf file & wondered if they add any security to my PC if I never ran autorun.inf in the first place.
Another question - Now let's say I use my own USB drive & plug it into different public computers, how could I protect my USB drive from getting infected if I plug it into an infected computer?