Beware!! Keylogger Attacks on the rise...

34 replies
We all know what damage keyloggers can do. It can be a virtual suicide if someone gets to know our precious passwords. I have recently been a victim of keylogger attacks but due to the precautionary measures i had already taken I was unscathed.

I am writing this since keyloggers attack are on the rise and I just wanted to warn all the warriors.

Here are some ways that may help you :

-- You can use a virtual keyboard such as Click-N-Type Virtual Keyboard by Lake Software. It is a Click-N-Type keyboard designed for anyone with a disability, but it can be used against keyloggers, simply by clicking keys with the mouse whenever you have to write sensitive information such as passwords.

-- Check the task list by press ctrl+alt+del in windows. Examine all the tasks running, if you unsure of a task look it up on a search engine.

-- Use the system configuration utility to determine which task are loaded at start-up (type "msconfig" in the run box to start).

-- Run your antivirus checker, it's possible this will pick up the Keylogger on your system.

-- Scan your hard disk for the most recent files stored. Look at the contents of any files continually updating (these might be logs).

-- Download a specific keylogger detector program, and see if it detects anything.

-- Run Spybot S&D, this program checks for some known keyloggers.

-- Here is a free anti-keylogging program. KL-Detector: detect keylogger on your computer! (it is a keylogger detector - NOT a keylogger remover)

-- You can also use a speech recognition software like Dragon Naturally Speaking to enter critical info on the web.

Hope this helps..
#attacks #beware #keylogger #rise
  • Profile picture of the author Tyler Pratt
    Thanks for the tips.

    I use a mac and don't worry about all that.
    Signature

    Get the Top 11 Millionaire Tools and 7 Of them are FREE
    >> Yes Get Instant Access <<

    {{ DiscussionBoard.errors[1615318].message }}
  • Profile picture of the author Mo Faisal
    @ Tyler : Recently a keylogger for Mac OS has been developed. Read here : Aobo Mac Keylogger for Mac OS X is the only Password Recording invisible Mac keylogger. Some evil genius can use that for harming people.

    Taking precautions won't hurt. Its better to be safe than sorry.
    Signature


    {{ DiscussionBoard.errors[1615340].message }}
  • Profile picture of the author Katie Rich
    I am always wary of downloading ever more software that I don't know much about.

    Have you tried the one you link to Bruce?
    {{ DiscussionBoard.errors[1615368].message }}
  • Profile picture of the author Mo Faisal
    @ Katie Rich : I am personally using the stuffs that I am pointing to. I wouldn't have ever recommended those if I wouldn't have been using them. Hope that gets rid of your fears.
    Signature


    {{ DiscussionBoard.errors[1615398].message }}
  • Profile picture of the author Zeb
    One tool that you can use is Roboform. An essential tool for me and alot of others too. Recommend you check it out. It saves your passwords so that you won't have to type them out on your keyboard (thus avoiding keylogging). And it helps filling out forms as well. Highly recommended...
    {{ DiscussionBoard.errors[1615444].message }}
  • Profile picture of the author Mo Faisal
    I have just found that Windows comes with a built-in On Screen Keyboard.

    Go to Start--> All Programs--> Accessories--> Accessiblity--> On Screen Keyboard.

    There you go. No need to download the on-screen keyboard mentioned in the main post if you fear about viruses et al.
    Signature


    {{ DiscussionBoard.errors[1615467].message }}
  • Profile picture of the author bobsstuff
    Thanks Bruce,
    I was going to mention Click-N-Type virtual keyboard.

    I recently downloaded it and use it to log into RoboForm or any other place I do not want key logging to see.

    I got my copy at Free Download Click-N-Type - Desktop Utilities Free Software which is a freeware site. I go there to find many types of excellent software.

    With Click-N-Type, you can use your real keyboard along with the virtual keyboard. i.e. If you have capital letters you can use your real keyboard shift key -- more convenient than C-N-T keyboard, which locks the caps key.

    C-N-T's keyboard defaults to an ABCDEFG......... keyboard, but you can change it to a QWERTY keyboard fast and easy.
    Signature
    Bob Hale
    {{ DiscussionBoard.errors[1615942].message }}
  • Profile picture of the author Lawrh
    Do not rely on task manager or msconfig. It's fine to check them for anomalies but unfortunately, spyware makers have long since prevented their programs from appearing in those lists. Always use a scanner.
    Signature

    “Strategy without action is a day-dream; action without strategy is a nightmare.” – Old Japanese proverb -

    {{ DiscussionBoard.errors[1616169].message }}
  • Profile picture of the author tritrain
    Ya know, one can buy a USB keylogger from ThinkGeek. The user would not know unless they follow the keyboard cable to the computer and even then it looks pretty innocent. Yikes!

    <edit>

    Here's the link: http://www.thinkgeek.com/gadgets/security/c49f/

    Signature
    Domains for sale - see seopositions.net
    {{ DiscussionBoard.errors[1616693].message }}
  • Profile picture of the author Lloyd Buchinski
    Well I appreciate a couple of good ideas here. Personally my little work around when using another computer is to type in a letter or 2 of the password, click somewhere else, type some more, click back in the password text box and type a bit more etc.

    I'm not sure that you can access the start> all programs> accessories> etc and get to the click keyboard on a public computer but I will be finding out the very next time I use one.

    It always pays to do things carefully and well and I do appreciate the company of people like that in this thread.

    best wishes, lloyd
    .......__o
    .......\<,
    ....( )/ ( )...
    Signature

    Do something spectacular; be fulfilled. Then you can be your own hero. Prem Rawat

    The KimW WSO

    {{ DiscussionBoard.errors[1617037].message }}
  • Profile picture of the author Chris Lagarde
    The KL Detector software doesn't look like it's been updated since 2006.
    {{ DiscussionBoard.errors[1617201].message }}
  • Profile picture of the author lazfin
    Originally Posted by Bruce_Richards View Post

    When I tried to download the "always on" keylogger shield (I Hate Keyloggers) from this page, Avast reported it as malware or a virus. Perhaps a false positive? I am not expert enough to make that call.
    {{ DiscussionBoard.errors[1617438].message }}
  • Profile picture of the author SEO_Pro
    Nice post.
    Also i might point out that you should never use the same passwords.
    {{ DiscussionBoard.errors[1617504].message }}
    • Profile picture of the author RefundHost
      Originally Posted by SEO_Pro View Post

      Nice post.
      Also i might point out that you should never use the same passwords.
      I use the same password for "everything". It's "password". ( no quotes ).
      {{ DiscussionBoard.errors[1619870].message }}
      • Profile picture of the author Zeb
        Originally Posted by RefundHost View Post

        I use the same password for "everything". It's "password". ( no quotes ).
        Dude, you really shouldn't use "password" as your password and what's more, disclose that on a personal forum like this one. I'd advice you to change your passwords now!!!
        {{ DiscussionBoard.errors[1619906].message }}
        • Profile picture of the author Black Hat Cat
          Banned
          Originally Posted by Zeb View Post

          Dude, you really shouldn't use "password" as your password and what's more, disclose that on a personal forum like this one. I'd advice you to change your passwords now!!!
          Ummm, I'm pretty sure he was joking. Still, knowing his password doesn't help anyone. They have no clue where he's using it.

          Here's one of mine: 87$@41Bb*Na3. Knock yourself out.
          {{ DiscussionBoard.errors[1621533].message }}
  • Profile picture of the author netraveller
    Like Roboform, lastpass offers similar solutions but free. Personally I had problem with lastpass design initially. Somehow it didn't feel right to me. But after reading up everything I could, lastpass slowly makes some sense to me. This may minimize keylogger problem, but not solving it completely because you still have to type in your password once.
    {{ DiscussionBoard.errors[1617586].message }}
  • Profile picture of the author VilPietersen@
    Thanks for the heads up, I'll definately apply some of those techniques you mentioned.

    Good post!


    {{ DiscussionBoard.errors[1617602].message }}
  • Profile picture of the author Mrs_Mo
    Talking about Macs, an easy solution is to get a password software, there are quite a few out there, so you never have to type passwords everytime!
    {{ DiscussionBoard.errors[1617738].message }}
  • Profile picture of the author Jay Cunningham
    I like to use RoboForm. It fills in the password and it has a password generator so you can create the really good ones. I really don't know how I would work without it.
    {{ DiscussionBoard.errors[1621330].message }}
  • Profile picture of the author Mo Faisal
    I have heard that roboform can be easily cracked..is it possible?
    Signature


    {{ DiscussionBoard.errors[1623278].message }}
    • Profile picture of the author oggobis
      Originally Posted by Bruce_Richards View Post

      I have heard that roboform can be easily cracked..is it possible?
      Of course possible.

      I have seen so much software being hijacked.
      Signature
      Va' Dove Ti Porta Il Cuore
      ..Are you IM newbie? Let's share our journey on twitter
      ..What Mistake(s) Have You Made?
      ..How Do You Recognize Your Call?
      {{ DiscussionBoard.errors[1623355].message }}
    • Profile picture of the author Lawrh
      Originally Posted by Bruce_Richards View Post

      I have heard that roboform can be easily cracked..is it possible?
      The encryption won't be cracked, your password/phrase may be. The human factor is always the weakest point in any system. Chose strong passwords and use some of the ideas in this thread. Scan for keyloggers, use strong passwords, copy paste or use screen keyboards etc.

      There is no evidence that AES encryption has been cracked. It is still the defacto standard for business and finance globally.
      Signature

      “Strategy without action is a day-dream; action without strategy is a nightmare.” – Old Japanese proverb -

      {{ DiscussionBoard.errors[1623390].message }}
  • Profile picture of the author SEOProGuy
    I have been hacked once by the hackers on my Neobux account, and I know they use KeyLogger. But I truly outsmart them by installing Symantec Firewall and Security on a high level which the hackers and virus are blocked to access my computer and internet.
    {{ DiscussionBoard.errors[1623302].message }}
  • Profile picture of the author oggobis
    Thanks Bruce.

    I always put attention about online security issue.

    I have few security software

    `Avast (international) anti virus
    `SmadAV (domestic) anti virus
    `Comodo firewall
    `IObit security 360 anti spyware, anti keylogger, anti malware
    `WinPatrol with Scotty doggy to woof at suspicious threats
    `And security updates from microsoft

    Slow a bit my PC, but better than risking unnecessary threats.
    Signature
    Va' Dove Ti Porta Il Cuore
    ..Are you IM newbie? Let's share our journey on twitter
    ..What Mistake(s) Have You Made?
    ..How Do You Recognize Your Call?
    {{ DiscussionBoard.errors[1623346].message }}
  • Profile picture of the author oggobis
    Lawrh,

    Now guys, I suppose this guy quite expert. ",

    I always do eBanking with on-screen keyboard.

    By the way, talking about strong password, how do you choose strong password for different websites? Any good tips?
    Signature
    Va' Dove Ti Porta Il Cuore
    ..Are you IM newbie? Let's share our journey on twitter
    ..What Mistake(s) Have You Made?
    ..How Do You Recognize Your Call?
    {{ DiscussionBoard.errors[1623474].message }}
    • Profile picture of the author Mo Faisal
      Originally Posted by Lawrh View Post

      The encryption won't be cracked, your password/phrase may be. The human factor is always the weakest point in any system. Chose strong passwords and use some of the ideas in this thread. Scan for keyloggers, use strong passwords, copy paste or use screen keyboards etc.

      There is no evidence that AES encryption has been cracked. It is still the defacto standard for business and finance globally.
      Quite relieved to hear that.
      Signature


      {{ DiscussionBoard.errors[1623913].message }}
    • Profile picture of the author Mo Faisal
      Originally Posted by oggobis View Post

      By the way, talking about strong password, how do you choose strong password for different websites? Any good tips?
      Use uppercase and lowercase letters randomly and also throw in some numbers and special characters.
      Signature


      {{ DiscussionBoard.errors[1623919].message }}
  • Profile picture of the author Azune
    It always cracks me up to walk into someone's office and see yellow stickies with random numbers and letters on them...most people can't remember random so they have to write their passwords down. No keylogger can steal them that way, but anyone breaking into their office can just sit there and try the text on the stickies until they get into the files they want to access....
    {{ DiscussionBoard.errors[1624638].message }}

Trending Topics