One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 437648 |
| Date de publication | 2017-11-21 14:00:00 (vue: 2017-11-21 14:00:00) |
| Titre | Keystroke Logging - How it Affects the Online Privacy of Internet Users |
| Texte |
Besides being a useful tool to study human-computer interaction, keystroke logging or keylogging is one of the most dangerous cyber threats for online users. Designed to covertly log everything a user types using the keyboard, keyloggers can silently steal and pass on your sensitive information to cybercriminals. Not just the websites you browse or the queries you google on, but your confidential details like online banking usernames and passwords can be recorded by a keylogger without your knowledge. The consequences? You might end up losing a fortune!
What do the stats say?
It is shocking to see that in July 2017, a data breach at Equifax led to the exposure of 145,500,000 consumer records, making it one of the largest data breaches in history.
Further, the target of hacking attacks are not just personal users, but many more. Take a look:
Businesses
Medical and Healthcare entities
Government or military targets
Educational institutions
From the above it is clearly evident that there is a strong need to understand and practice security measures to avoid online privacy intrusions.
How keystroke logging works
Keystroke logging can be achieved by both software and hardware. Let us see how these two methods work:
Hardware keylogger
A hardware keylogger is a device that resembles some part of the computer cabling and is connected in between the computer and keyboard. This resemblance makes it easy for the attacker to hide the device. Some examples include inline devices that are attached to the keyboard cable, keyboards with inbuilt keyloggers, etc. However, one drawback of using a hardware keylogger is that the attacker typically needs to return and uninstall the device in order to access the information that has been captured.
Software keylogger
Software keylogger is a computer program that needs to be downloaded and installed on the target computer. However, this software can also be a part of some malicious software downloaded unknowingly by the computer user or executed as a part of a rootkit that launches itself and works stealthily. The captured information is updated on the server periodically for the controller's access.
What types of information do keyloggers capture?
The capabilities of keyloggers vary according to their type and target. However, the following are some common actions done:
Capture passwords that are entered by users
Take screenshots of the device periodically
Capture URLs visited via web browsers and screenshots of the web pages that are viewed
Capture a list if all the applications that are running on the device
Capture copies of sent emails
Capture logs of all instant messaging (IM) sessions
The data captured by a keylogger is automatically sent in the form of reports to a remote computer or web server, as defined by the attacker. The report is either sent by email, FTP or HTTP.
How to avoid keylogger intrusions
Use an Antivirus with Anti-Keylogger capabilities
Go for an Antivirus Software with anti-keylogger capabilities, as it is a type of software specifically designed for the detection of keystroke logging software. Such software has the ability to delete or at least immobilize hidden keystroke logging software on a computer.
Say no to free software
Since keyloggers can easily attach themselves to freeware available over th |
| Envoyé | Oui |
| Condensat | such 000 2017 500 ability above it access accessed according achieved actions affects all also always anti antivirus anyone applications are attach attached attacker attacks automatically available avoid banking bay been being besides between both bottom breach breaches browse browser browsers browsing businesses but cable cabling can capabilities capture captured chrome clearly common computer computers confidential connected conscious consequences consider consumer controller's copies covertly critical crucial cyber cybercriminals dangerous data defined delete designed details detection device devices done: downloaded downloading drawback easily easy educational either email emails end ensure entered entering entities equifax led etc everyone everything evident example examples executed experience explorer exposure firefox following form fortune free freeware from ftp further get google government hacker hacking hardware has has the healthcare hidden hide history how however http human ignorance immobilize important inbuilt include including individuals information inline install installed instant institutions interaction internet intrusions it’s itself july just keep keyboard keyboards keylogger keyloggers keylogging keystroke knowledge laced laptop largest launches least let like line list log logging logs look: losing maintain makes making malicious malware many measures medical messaging methods microsoft’s might military more most need needs newer not of 145 one online options order organizations over pages part pass passwords periodically personal physical practice privacy program protect public queries recognized recorded records remote report reports resemblance resembles resist return rootkit running safe safety say screensavers screenshots secure security see sensitive sent server sessions shocking should silently since software some specifically stats steal stealthily steps strong study such switching system take target targets tempting them themselves therefore these those threats tool towards two type types typically understand uninstall unknowingly updated urls use useful user usernames users using vary vendors viewed visited web websites what who wise not without work: works your |
| Tags | |
| Stories | Equifax |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.