Slashdot Mirror

← Back to Stories (view on slashdot.org)

Keystroke Logging Increases

Posted by Zonk on from the not-a-friendly-neighborhood dept.

JamesAlfaro writes "Hackers are likely to release more than 6000 keylogging programs this year--up 65 percent from the number in 2004--according to Reston, Virginia, security vendor iDefense." From the article: "Each variant could lead to anything from a few to several thousand infections, Ken Dunham, senior engineer at iDefense, said. Keylogger software typically tracks keystrokes on infected computers and is used to try to steal sensitive information such as user names and credit card data. The biggest problem with keyloggers, which silently relay data to attackers, is that they often go undetected, easily slipping past firewalls and antivirus software, iDefense, a division of VeriSign, said. "

10 of 204 comments (clear)

  1. Bundled with spyware? by jawtheshark · · Score: 5, Interesting
    At least that's what the article seems to imply. So the lesson here is: protect your computer, use Firefox, Ad-Aware and Spybot.

    For the moment it's fairly easy to find out when a machine has spyware. What would scare me is when a decent programmer will start to write such programs so that it is completely stealth and doesn't bring the machine to a grinding halt. After all, basically all spyware seems to be badly written and performance not an issue at all. A decent programmer, using all his skills could write a stealth spyware/keylogger that doesn't bog down the computer and goes undetected for a very long time. It shouldn't do popups, but just log the keys... A small background prcess could do this, and store locally, detect when a big download is started to camouflage its own traffic to the server by sending it while the big file gets downloaded. The day that that happens: we'll be all screwed.

    --
    Ahhh...the great dumpster continuum. Many a free computer will be found there. -- sowth (748135)
    1. Re:Bundled with spyware? by BokLM · · Score: 5, Insightful

      For the moment it's fairly easy to find out when a machine has spyware. What would scare me is when a decent programmer will start to write such programs so that it is completely stealth and doesn't bring the machine to a grinding halt.

      And what make you think it's not aldready happenned ? Maybe you're just not aware of it now.

      The Sony rootkit has been running on thousands of computers for months without anyone to notice it ... It's not as easy as you say to find out when a machine has spyware.

      --
      wtf.n0x.org
    2. Re:Bundled with spyware? by Anonymous Coward · · Score: 5, Interesting

      I found a keylogger immediately after it had gotten installed using the following method. "Find Files" on C: modified in the last day. Then sort on date/time and look at the most recent. That found the keylog files. I then used Winhex to inspect the memory of the program that I had found running and discovered it was trying to send the information to a darksingh666@hotmail.com

      Next step was to send the DarkSingh chap an email telling him what a cunt he is :-)

      In any case, the method is useful for detecting unknown non-rootkit loggers that don't encrypt their data. Works on all the corporate spyware our company install to make our PCs behave like 486s.

  2. I'm gonna... by Anonymous Coward · · Score: 5, Funny

    Hackers are likely to release more than 6000 keylogging programs this year

    Will there be a firefox plugin for one of those babies? Or am I still gonna be missing out on all the fun this year also?

  3. Phew... by lukewarmfusion · · Score: 5, Funny

    Good thing I type everything in with charmap.

    ßöôÝà!

  4. I am Jack's Beans by GigsVT · · Score: 5, Funny

    easily slipping past firewalls and antivirus software, iDefense, a division of VeriSign, said.

    But for $99.95 per system per day you can buy magic beans from iDefense that protect you against them, right?

    --
    I've had enough abrasive sigs. Kittens are cute and fuzzy.
  5. That's Open Source for you... by meringuoid · · Score: 5, Funny
    ... 6000 incompatible platforms. How are customers meant to establish a standard that way?

    Fortunately, Microsoft Keylogger 2006 will be included with Vista, and will report all your passwords to Redmond in a convenient and user-friendly way, establishing a de-facto industry standard in modern keylogging solutions.

    --
    Real Daleks don't climb stairs - they level the building.
  6. Charmap? by TubeSteak · · Score: 5, Informative
    http://en.wikipedia.org/wiki/Keylogger

    It is also said that using an onscreen keyboard is a way to combat these, as it only requires clicks of the mouse. That is, however, false information, because a keyboard event message must be sent to the external target program to type text. Every software keylogger can log the text typed with onscreen keyboard.
    --
    [Fuck Beta]
    o0t!
  7. The most undetectable keylogger by Saint37 · · Score: 5, Informative

    Obviously software keyloggers are a huge threat. But there are also hardware keyloggers that hardly ever get mentioned. They get plugs in usually between your ps2 port and your keyboard. They are very small and can store MB's of data. Since people hardly ever look back there, they are very hard to detect. Of course physical presence is required to use this, but I'm sure some of my coworkers would love to play with one of these.



    http://www.stockmarketgarden.com/

  8. No laughing matter... by ChePibe · · Score: 5, Interesting

    I work for a university and supervise multiple public computer labs for students.

    One of our employees decided it would be a brilliant idea to install a key logger on a handful of our computers. Our security software would have easily detcted/prevented the installation, but this employee had administrator passwords, allowing him to bypass the security software (since then, passwords have been restricted, which leads to massive inefficiency but higher security). He quietly disabled the security - especially anti-virus - software on these computers and let the program do its work.

    The key logger was discovered approximately 6 weeks later when an icon for it randomly popped up on the desktop (I do not know the name of the key-logger software). A patron reported the strange icon, and the lab assistant reported it to management.

    All 600 people who had used these computers in the last 6 weeks were notified almost immediately of the breach and instructed to change all their passwords and monitor their credit reports for suspicious activity. A lengthy FBI investigation began, and finally one employee was singled out. Luckily, there is no evidence he used any of the information he had gleaned from these computers.

    This employee faced jail time, but ended up accepting a plea bargain for 5 years probation and a $5,000 fine. He has since fled the country.

    Moral of the story - these things are quite serious when installed on the right computer, and those that install them in person could receive jail time. Now, even one hint of a key logger appearing on a computer in the labs is enough to drag in all of our technical staff at any hour to heavily investigate and reimage all nearby computers. We'd rather not have to go through any more investigations with the FBI.