Slashdot Mirror

← Back to Stories (view on slashdot.org)

FBI Files Brief on Scarfo Keylogger

Posted by michael on from the only-as-secure-as-the-weakest-link dept.

Firewort writes: "In an affidavit (warning, it's a PDF) filed with a federal court in New Jersey, the FBI has disclosed some of the details of a controversial "key logger system" used to obtain the encryption password of a criminal suspect. They go into great detail describing PGP and the different methods they might have used to keystroke-log Scarfo to get his encryption key." Interesting, and more technically sophisticated than the basic keyloggers which grab keystrokes indiscriminately.

7 of 249 comments (clear)

  1. Bypassing the keylogger by loosenut · · Score: 4, Funny

    The key to fooling the keylogger is to use a blank password, of course.

    FBI recruiters who are reading this: you know where you can contact me about that job offer.

  2. Re:A simple keystroke logger can be elegant, too by Anonymous Coward · · Score: 2, Funny
    <nitpick>It'd be a pain in the ass to destroy a CD-ROM "at a moment's notice"</nitpick>

    I certainly wouldn't want to retrieve it after that disposal method.

  3. scarfo keylogger by trb · · Score: 5, Funny

    When I read this headline, I thought, Scarfo is a pretty sensible name for a keystroke logger.

  4. Re:Ctrl-V ? by The+Dodger · · Score: 5, Funny

    Yeah, but think about it.

    Do you really want to leave your PGP passphrase lying around in a text file on your computer? :)

    D.

    ...is for DOH!

  5. Re:Scarfo Used Windows by Kallahar · · Score: 3, Funny

    In further released papers, the FBI has siezed all Microsoft assets. The FBI was able to do this by citing the laws regarding "primary use by criminals" since most copies of windows are pirated, used by viruses, or used by people who are criminals (including unpaid parking tickets).

    The new company, tentatively called GovernSoft, will be sold to the lowest bidder to pay for the costs of prosecuting the case, which could reach into untold billions of dollars.

  6. Fake "real" keyboard, then USB??? bwahahahar! by NeoTron · · Score: 3, Funny

    Couldn't you have your serial keyboard plugged in, then
    when you go to use your pc, go to another room, take out your
    nice USB keyboard, then plug that in and use that instead?

    Wouldn't it be funny seeing the feds puzzled faces - you've been
    sending all sorts of PGP'd email in the last month, and all thier logger has registered is "haha MOFO's!!!!" - LOL!!!!

    1. Re:Fake "real" keyboard, then USB??? bwahahahar! by liquidsin · · Score: 2, Funny

      well hell, if you're going to that trouble, why simply mock them with "haha MOFO's!!!!" when you could have some real fun:

      Journl Entry - Oct.12, 2000
      Met with 'Dubbya' today. Promised to have all fake ballots filled out and filed within the next couple weeks. Also, sold him an 8-ball.

      --
      do not read this line twice.