McAfee's recent White Paper on Identity Theft and the state of malware identified that keylogger use rose over 250-percent from 2004 to 2006.
Keyloggers are usually software applications that can reside in the memory of a computer and record keystrokes from the keyboard input; keyloggers can also be hardware devices that are installed as a wedge between the keyboard port and the keyboard itself.
Software keyloggers are installed by phishing scams, as virus components, or as a part of a 3rd party application install. They're usually an executed program that can reside silently in memory and go unnoticed. Many users don't go inspecting their keyboard inputs before using their PC, so someone can install a wedge, capture keystrokes, then recompile the keystrokes into account numbers, passwords, and other private information for the purpose of compromising the user's security.
You'd see the use of a wedge when somebody has physical access to a computer - think a janitor or co-worker, someone within proximity. Software can be installed through multiple means.
The keylogger works well because it captures the data straight from the inputs (the keyboard), bypassing encryption processes or visible transformation processes on the screen (like converting your password to *****).
Interested in keeping away from phishing scams and keyloggers? Try this site out:
http://nophishing.org/
R
www.micklerandassociates.com
Wednesday, January 24, 2007
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment