USB Detection Last updated June 2, 2026 · Desktop Connect

USB Detection provides visibility into when USB devices are connected or disconnected on enrolled endpoints, supporting security awareness and compliance programs.

What Is Tracked

The USB Detection feature logs:

  • Connection Event: Timestamp when a USB device is plugged in
  • Disconnection Event: Timestamp when a USB device is unplugged
  • Employee: Which user was logged in when the event occurred
  • Device Information (limited): Common types of USB devices detected (flash drives, external hard disks, USB headphones, etc.) — but NOT the contents or specific identifiers of the devices

What Is NOT Tracked: The type or contents of the USB device, the data transferred, or where files came from/went to.

Privacy Approach

USB Detection records that a connection event occurred — useful for security monitoring — but does not inspect device contents. This provides visibility without excessive privacy intrusion.

Example: "John plugged in a USB device at 2:15 PM on March 10" — not "John copied files X, Y, Z from the USB drive."

Accessing USB Detection Logs

In the Prodoscore portal:

1 Navigate to USB Detection (may be under Settings or a Security/Compliance section, depending on your portal version)

2 View the event log table showing all USB connection/disconnection events

3 Each entry shows: Timestamp, Employee Name, Event Type (Connected/Disconnected), Device Type (if detectable)

Filtering and Searching

Available Filters:

  • User Filter: View USB events for a specific employee only
  • Date Range Filter: Filter by date (e.g., past 30 days, specific week)
  • Event Type Filter: Show only connections, only disconnections, or both
  • Custom Filters: Combine multiple criteria (e.g., "John's USB connections in March")

Export and Audit Trails

Download as CSV: Export USB detection logs for external analysis, audit trails, or compliance documentation.

Exported data includes:

  • Timestamp (date and time)
  • Employee name and ID
  • Event (connected/disconnected)
  • Device type

Use Cases

  • Security Incident Investigation: "Did anyone plug in a USB device around the time the data breach was discovered?"
  • Compliance Audits: Track USB device usage to demonstrate data handling compliance
  • Data Exfiltration Prevention: Monitor for unusual USB activity patterns (e.g., multiple large devices in one day)
  • Policy Enforcement: Identify employees who violate USB usage policies and educate them

Responsibility and Privacy

USB Detection is a security tool and should be used responsibly:

  • Inform employees: Include USB monitoring in your acceptable use policy
  • Proportional response: Use USB event data for legitimate security purposes, not punishment for personal device use
  • Restrict access: Only IT security and compliance teams should have access to USB logs
  • Audit logging: Document who accessed USB logs and when, for accountability
Tip: Combine USB Detection with endpoint DLP (Data Loss Prevention) policies for comprehensive data protection. USB Detection shows _when_ devices are connected; DLP policies can block unauthorized data transfer to those devices.