Slashdot Mirror

← Back to Stories (view on slashdot.org)

Keystroke Logger Faces Federal Wiretap Charges

Posted by CowboyNeal on from the watching-the-watchmen dept.

securitas writes "In what prosecutors say is the first case of its kind, a former insurance claims manager was indicted on federal wiretapping charges for allegedly installing a keystroke logger on another employee's computer. The device was secretly installed 'on a PC used by a secretary to senior executives at Bristol West Insurance Group.' Reuters reports that the man, who had been fired, was gathering information for a class action lawsuit against his former employer. SecurityFocus interviews would-be keystroke logger user Larry Lee Ropp who reportedly installed the KEYKatcher device on the PC."

28 of 346 comments (clear)

  1. Just slightly OT by The-Bus · · Score: 5, Interesting

    From http://www.keykatcher.com/testimonials/index.html

    "I must thank you for this great invention. Early this year, I discovered my 14-year-old daughter was on the ICQ with a person with a name of "P****". I was shocked and did not know what to do. I then e-mailed the editor of Parent and Child and they reccommended me to do a search on the internet. I was very fortunate to have purchased a KEYKatcher. The ability to read my daughter's e-mail has helped us to make the right decision about the school she would attend last September..."

    I mean, is there any useful use for this device at all?

    --

    Small potatoes make the steak look bigger.

    1. Re:Just slightly OT by REBloomfield · · Score: 4, Interesting
      we actually use something similar in the school i work at. Students are monitored by the logger, if it finds a word or phrase in our database, then a screenshot is sent to us, and we can then watch the student in real time over VNC.

      eg. student types in http://192.168.0.1/admin then we know about it (ficticious example: idea is that the kid is going somewhere he shouldn't).

    2. Re:Just slightly OT by Liselle · · Score: 4, Interesting

      I can't think of anything that's terribly legal. I knew there was a reason I never do anything important on publically-accessible terminals. I guess it's a nice device to own if you're a bad parent with a tinfoil hat.

      The question in the back of my mind on this article though: what would they have done if it was a software keylogger, instead of a hardware one? Do the wiretap laws still apply in the same capacity? I understand from TFA that the fact that it logged emails made him a target for it.

      --
      Auto-reply to ACs: "Truly, you have a dizzying intellect."
    3. Re:Just slightly OT by Chess_the_cat · · Score: 4, Interesting
      I mean, is there any useful use for this device at all?

      Definitely. If you're a writer of some kind, install a KeyKatcher and you've got an instant backup of everything you've written. If your word processor crashes, no problem; fire up KeyKatcher and cut and paste everything you've lost. Beautiful stuff.

      --
      Support the First Amendment. Read at -1
    4. Re:Just slightly OT by Vellmont · · Score: 2, Interesting

      Duty of care? The internet is everywhere, not just schools. You can order up some nice heroin on the phone too, but there's no "duty of care" because you provide a phone line.

      Are you going to bug the bathrooms to find out if anyone is making drug deals? What's so special about the internet that you feel you should monitor usage on such a personal level?

      --
      AccountKiller
    5. Re:Just slightly OT by Mose250 · · Score: 4, Interesting

      Not really - what's the difference between this and just having a teacher walk around and glance over the kids' shoulders? The fact that VNC is used instead of a pair of eyes? Computers in schools have never been a place for completely anonymous internet access.

    6. Re:Just slightly OT by loyalsonofrutgers · · Score: 2, Interesting

      I agree. Especially in states where the state constitution provides an explicit right to privacy (for example, Alaska, a notoriously libertarian state). There is a big, big difference between filtering internet content and monitoring an individual. I recall when I was a freshman in high school the ELP (gifted program) lab computers had a program to take a screenshot every so many seconds and save them to be reviewed. It turns out that it was a student "administrator" who had installed it and who reviewed the screenshots. THAT was a lawsuit waiting to happen.

    7. Re:Just slightly OT by orthogonal · · Score: 4, Interesting

      I can't think of anything that's terribly legal

      Well, there are very few cases, but... I installed a (software) key logger on my own box in order to get the raw data needed to figure out my personal letter frequency in typing -- the standard English frequency wouldn't apply, as I do a lot of C and C++ coding. (How often do you see semi-colons, let alone curly braces, in standard English writing?)

      A nice side benefit is that I could review the key log -- to see if anyone else had been using my computer.

      --
      Opinions on the Twiddler2 hand-held keyboard?
    8. Re:Just slightly OT by maxwell+demon · · Score: 3, Interesting

      You mean like www.microsoft.com or someone@hotmail.com?

      And BTW, for running a .com file, it suffices to just type the name without the ".com"!

      --
      The Tao of math: The numbers you can count are not the real numbers.
    9. Re:Just slightly OT by dwave · · Score: 3, Interesting

      They promote their product as a technical solution to a social problem? I don't think this will work.

      Friends with children who are computer literate often ask me if there's a way to limit the log on time for the children's accounts. I've no children myself but I always advice against the technical way. If there's an apparent problem (homework not being done properly, neglect of friends, socialising with the wrong kind of people etc.) parents have to dedicate time to their kids and find an agreement together. Just installing spyware and barriers won't work.

      Besides, parents often underestimate their kids' knowledge and creativity to jump technicals obstacles. And I'm sure there a quite a few children who have root account on their daddy's Windows box and know a lot more about computers than dad ever would.

    10. Re:Just slightly OT by Cr3d3nd0 · · Score: 5, Interesting

      As a matter of fact I just found a maybe not so much legal, as a justifiable use for a keylogger. My girfriend lives at home with her mom, 6 year old brother, and her mom's boyfriend. Being the geek I am I took the time to help clean their system of spyware and the like when I ran into a few child pornography pictures in the recycle bin. Seeing as they have a 6 year old child living there I wanted to keep an eye on their system to find out where the pictures had come from. Sure enough three days later I got a log in the email of the boyfriend chatting with a young child online. I informed the mother, and the police and now the asshole is up on child porn charges. Obviously they couldn't use the keylog information but the fact that the pictures were on there was enough.

      --
      This is not a sig
    11. Re:Just slightly OT by Huogo · · Score: 4, Interesting

      I've found that booting to a Knoppix CD, then connecting to a proxy on my webserver through an SSH tunnel is a very good way to avoid being monitored. NetOp (basically VNC) won't work, VNC won't work, watching my history won't work, and the server logs won't work. All the data is encrypted, with nothing running client side to monitor me. Only way is for someone to look over my shoulder.

    12. Re:Just slightly OT by maximilln · · Score: 4, Interesting

      If you're relying on a keystroke logger to clue you in to children who have problems with any of these issues then let it go. You're already too late.

      If parents and mentors were even close to taking responsibility for their children they'd pick up on these issues long before a keylogger alerts them to it.

      Ode to a generation that is completely self-absorbed until the last possible moment when "DANGER WILL ROBINSON" is blaring over loudspeakers.

      --
      +++ATHZ 99:5:80
    13. Re:Just slightly OT by elmegil · · Score: 4, Interesting
      You've never had to deal with rule breakers, have you? It's not a matter of "playing God" in most cases, it's a matter of making sure that the rules are adhered to. If all you do is sit back and repeat the rules, and are only able to do anything about the most flagrant rulebreakers, all you end up doing is pushing the real troublesome ones underground. Policies should not only say "you agree to be monitored" but also what you can do if you think you've been mistreated, and provide real relief if you are.

      As a former university sysadmin, there were times when we would find out someone was breaking the rules, but to enforce them we had to have real evidence. This involved surveillance, usually electronic/email. We then made our case to the dean of students, and if they agreed that the rules were broken, punishment was handed out. The student always had the ability to appeal to higher authorities if they thought they'd been mistreated or the punishment was too harsh. Enough checks and balances that it was never abused; we didn't snoop on students who had not done anything to arouse suspicion, and I can't recall any cases where we went to any great depths investigating anyone who wasn't found to be guilty of enough of an infraction to justify our time.

      That said, I think continuous keystroke logging is excessive and likely more prone to abuse, but still, there is NOT any absolute guarantee of privacy, even if I'm using my own equipment. That's why the FBI can go to a judge and get permission to wiretap a suspect (let's leave aside the fact that I believe that PATRIOT has gutted a lot of the appropriate checks and balances in this system). The other side of that is that you can't just wiretap someone because you want to, and getting back OT, that's what happened here. Regardless of how noble the cause, the means was illegal.

      --
      7 November 2006: The day Americans realized corruption and incompetence weren't addressing 11 September 2001
    14. Re:Just slightly OT by MrScience · · Score: 3, Interesting

      Unless you used something hardware based... say, the KeyCatcher mentioned in an above post. In which case it catches all keypresses, whether you're running OS/2, BEOS, in the BIOS, or Linux.

      Of course, since I type in Dvorak, it wouldn't be able to figure out what the heck I'm typing (since I use a software driver to convert a QWERTY keyboard).

      --

      You quitting proves that the karma kap worked. The most annoying of the whores shut up. --CmdrTaco

    15. Re:Just slightly OT by daksis · · Score: 2, Interesting

      It doesn't make for a safer environment. It makes for an environment that *seems* safer. Coercion is the lowest common denominator of co-operation. It works only so long as the will of the coerced is broken. So the kid who's going to find a copy of the anarchist cookbook surfs for it at home, instead of at school. He's still going to come into the school trench coat and six guns blazing and people are still going to wonder "why?". All safety is an illusion. And snooping on the online activities of children seems a pretty low way to give the parents piece of mind.

      What would happen if the school spent as much time attempting to provide for the moral development of their charges as they did policing their online activities?

  2. Federal wiretapping charges? by pinkUZI · · Score: 5, Interesting

    When is the last time you remember hearing about an indictment for actual wiretapping? Doesn't it seem like people get away with wiretapping regularly? I'm thinking about things like the illegally recorded phone conversations with Monica Lewinsky. Or does the law specify exemption if it is done for a good cause?

    --
    You are receiving this message because your browser supports Slashdot Sigs and you have Slashdot Sigs enabled.
    1. Re:Federal wiretapping charges? by Lord+Kano · · Score: 2, Interesting

      I have always wondered if one party stating this fact makes it legal for the other party, in this case the consumer, to also record the conversation.

      That's a good question. When I worked for DishNetwork we were instructed to stop talking if the customer said that the were recording the conversation. We were instructed to tell them that we didn't give our permission for them to record us, right before we stopped talking. We were also instructed that legally they HAD to stop recording us once we said that...

      But that never made sense to me, we're all aware that any given call COULD be recorded and monitored. I would guess it varies from state to state, but it didn't sound right to me. If we get the right to monitor the call by making the announcement, all parties are aware of the possibility, and consent to US monitoring the call, then how in the hell can that same right not extend to the other party of the call?

      LK

      --
      "Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
  3. Re:What a contradiction! by SmackCrackandPot · · Score: 2, Interesting

    A keyboard is a two way communication device. The inputs are the keys you press, and the outputs are the num lock/caps lock and scroll lock lights. In theory, you could use a keyboard to communicate with another person using Morse code with the space bar to send and the num lock light to receive them.

  4. Re:What a contradiction! by Anonymous Coward · · Score: 1, Interesting

    For the feds, that's the problem with this whole thing. If they go after the guy for illegal wiretapping, they admit that this sort of thing is wiretapping. Then they have to abide by their own rules for wiretapping when they decide to do this kind of thing.

    I personally hope that this goes through, if only because it'll make the feds play nice, or let us do something about it when they won't.

  5. I've used a keyboard logger by spidergoat2 · · Score: 5, Interesting

    We had a consultant (former employee) work at a branch office. The owner said to keep an eye on them. I want to the branch office and told every employee that I was installing a keyboard logger and why. When the consultant (former employee) logged on, they had no idea they were being tracked. I discovered they had a back door account and were logging into a supervisor account. Good or bad, I discovered the holes in my system.

  6. thinkgeek disclaimer? by circletimessquare · · Score: 5, Interesting

    so when is the disclaimer going up at thinkgeek?

    http://www.thinkgeek.com/gadgets/electronic/5a05/

    disclaimer: please do not buy this product and use it for what you think you were going to use it for, thank you... same with that x10 camera you were thinking about too, while we're at it

    --
    intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
  7. Robin Hood by JSkills · · Score: 3, Interesting
    First off, there are a couple of links to articles describing what happened, the Security Focus article was the most informative.

    So we've got this guy working for an insurance company who decides to inform the Dept. of Insurance that they are cancelling policies unlawfully. This is a good thing and brave of him to do it. Hopefully his motivations were purely good and not just because he was pissed he didn't get a raise last year or something.

    And let's face it, insurance companies are the some of the worst kinds of organizations in corporate America. They collect huge sums of money via premiums - that are based in people's fear that something terrible could happen. And then as soon as you need them (you have an accident, someone in your family gets ill, etc.), they immediately initate every effort to not pay you in your time of need. I know it's how they do business, but it's a disgrace. I have experienced this first hand more than once ...

    Back to the story, the guy then plants a keystroke logger on a secretary's PC in order to collect further info for his crusade and to aid lawyers in a class action suit against his company. He obviously crossed a line here. And in the middle of this, he finds himself fired (curious). So he asks a former co-worker to retrieve the logger for him? And of course being a good insurance company employee, she rats him out.

    I applaud his intentions, if they were indeed based in fairness and the public good. He did get carried away for sure by planting the bug. But I can't believe the stupidity of (1) admitting he planted it to a former co-worker and (2) expecting her to help him retrieve it and f--k the company she still worked for. I guess he really was a bit of a dreamer ...

  8. Software keyloggers by maximilln · · Score: 3, Interesting

    Why do I get the impression that this article specifically avoids mentioning software keyloggers? Whether or not they're currently illegal under the law shouldn't they be?

    --
    +++ATHZ 99:5:80
  9. Ain't That A &!^(# by dnoyeb · · Score: 3, Interesting

    Aint that a bitch.

    I was just thinking last year how stupid these insurance companies were for always sending cancellation notice as opposed to a bill. (I live in Michigan.) So when I actually get a cancellation notice I don't know if its simply a bill, or an actual cancellation notice.

    I have never received a bill from an insurance company, only cancellation notices, and I've been with at least 5 different ones. What more info is needed? we know they do this.

    For those who didnt RTFA, Ropp was trying to get the list of people who they pulled this fast one on, from the companies password protected (DMCA anyone?) database.

    More power to you Ropp. If the government mandates one must buy something, that thing should be heavily regulated by the government. racket.

  10. My keylogger experience by kwandar · · Score: 4, Interesting

    I was working for the President of a company who seemed to have information about others that left me wondering. So, I ran a program, (I believe it was Spycop), to scan for anything nefarious on my computer. Nothing found, fortunately.

    However I shared this program with a colleague and she ran it and found a keylogger that would send emails from her company laptop, to a blind email account. He apparently had a thing for her roomate, a former employee, and was using this to spy.

    My colleague was shocked that this would happen, but as it appeared to have been non-functional for a while due to internet login issues, she didn't say anything, and I told her what to delete to kill the program from running.

    That way, any deletion of the software could at least appear to be accidental.

  11. Re:Does this contradict the Scarfo case? by _LORAX_ · · Score: 4, Interesting

    Yes,

    For those that don't know...

    In New York federal investigators used a search warrant to physically alter Scarfo's computer to install a hardware keyboard logger so that they could retrieve his pgp passwords This search warrant was a sneek and peek. They then went back in a month and took the computer on another search warrant.

    At no time did they have a wiretap warrant, they claimed that they didn't need one. This case seems like they are contradicting themselves in several ways. By prosecuting this grey hat, they may be giving Scarfo grounds for an appeal of his conviction based on the fact that the evidence was tainted.

    The reason this is important is that the requirements are more stringent for a wiretap warrant then for a search warrant, if they had had proper evidence they would have use it to get a wiretap, but they didn't.

  12. I've been fired too! by deweywsu · · Score: 2, Interesting

    I recently got fired from an electronics engineering company in the town of Pullman, WA. I feel like I was treated unfairly, in that I was fired because I agreed to an electronic use policy that stated that the computer I used and anything send from it was able to be monitored. About 11 months ago, I broke up with my girlfriend. I really loved the girl, and hoped to clear up misunderstandings that led to the breakup. However, as these things go, sometimes the prettiest of comments are not said to one another. She said some things I don't think any person should hear. Sadly, and I'm not proud of it at all, I said some things back (of course wanting to uphold my pride, not really thinking that at the time I was only shooting myself in the foot, not only with what little was left of our relationship, but the fact that I was doing it from a company computer). About 3 weeks ago, my hard drive failed. I called our IS department, who came out to deliver a new drive. I erased the old one after I had transfered my files off it. Shortly therafter, they came to pick it up, saying they didn't want it to get into circulation again since it was damaged. Someone must have been thouroughly bored and decided to start a little investigation of my personal data by reconstructing what was on the drive. (Although I deleted files, I didn't reformat...my bad). Shortly after dropping off the old drive, I was told I was fired, because the company had viewed conversations to my ex that were automatically logged by MSN messenger. I'm still quite perterbed that they pulled this out almost a year after it happened. Also, the point was brought up...what gives them the right to monitor a computer, whether they own it or not, when they certainly can't do that with a phone?! How much of our lives are to remain ours, and private when we go to work? The reason they gave was that it put the "company's servers at risk". Hmm. Okay. Obviosuly not that much if nothing has happened, and it's been a year. I wrote the owner of the company, who I greatly respected, who handed it back to the HR department, who verified that they would not re-hire me, despite my personal life issues that led me to do this. On one hand, I see their point in not re-hiring, in that if you do it for one, you give grounds to have to do it for all. From another though, does this stink a little of improper HR and IT practices to anyone but me? -J