Candy drop
Candy drop describes a social engineering tactic of infecting a computer or network by leaving a USB (Universal Serial Bus) thumb drive near where an attacker wants to attack. For example, if a hacker wanted access to a company, they could infect a USB thumb drive with malware and label the drive with "payroll" or "personal pictures." A worker might find the USB thumb drive while walking into work and not be able to resist looking at the drive. Once the drive is inserted or after something on it is run, the malware could infect the computer and give the hacker remote access.
Today, USB thumb drives are the most common type of candy drop because that's what most users use. However, in the past, these attacks were also done with a CD (Compact Disc), floppy diskette, and infected MP3 player.