|
Recent Articles
Thieves Don't Take a Holiday
Vishing
Phishing/
Email scams
Three New Scams
Tips for Spotting Fraud
What's on
Your Driver's License?
ATM
Safety Tips
Fraudulent
Lotteries
Spotting
Fraud
Spoofing
URLs
Wireless
Network Security
Spyware
Keyloggers
Your Social
Security Number |
|
The Danger of Keyloggers
Identity Safeguards © July 2004
A keylogger is a hidden computer
program that records the keystrokes you make,
online and offline. After keystrokes are logged,
they are secretly stored on your computer for
later retrieval, or sent, via the Internet, to
a thief. The crook then examines the keylog with
the hope of finding passwords, or other useful
information that could be used to compromise the
system or steal your identity.
Any information entered into the computer can
be retrieved. For example, a keylogger can reveal
the contents of your personal e-mail, or the passwords
you use to access online banking. Once they gain
access to your financial information, crooks can
transfer funds, change billing addresses, and
make purchases, often without raising any suspicion.
When someone steals your wallet or purse, you
know there has been a breach of your personal
information. The danger of keyloggers
is that you often don’t know until it is
too late.
Hackers and identity thieves will place keylogger
programs on your system by embedding them in “free”
software you download from the Internet or through
automatic installations initiated by “pop-up’
ads or email. Once installed, the software works
invisibly to monitor and record your every move.
There are several software companies that produce
keyloggers, and they are readily available for
a modest price. Unfortunately, the brunt of the
cost is usually paid for by the victim. One product
boasts the following features:
- Internet Conversation Logging
- Log both sides of all chat conversations for
AOL/ICQ/MSN/AIM Instant Messengers, and view
them in real time, as they are happening!
- Window Activity Logging -
Capture information on every window interacted
with.
- Application Activity Logging
- Track every application/executable that was
executed and interacted with.
- Clipboard Activity Logging
- Capture every text and image item that was
sent to the clipboard on the remote machine.
- Keystroke Monitoring - Track
all keystrokes pressed [including hidden system
keys!] and which windows they were pressed in.
Keystrokes can also be passed through a formatter
for easy viewing/exporting.
- Websites Activity Logging
- Log all websites that were accessed on the
remote machine.
Here are some things you can do to protect yourself:
- Adjust your internet settings to prevent your
computer from installing programs automatically
from the Internet or launching them automatically
from email. Once you’ve disabled the automatic
installation, you should see a prompt anytime
an application attempts to install itself. Do
not click "OK", "Yes", or
"Run This Program" if prompted unless
you trust the program and are fully aware of
its purpose.
- Update your operating system frequently. If
you use windows, visit the Windows
Update site and install patches marked “critical.”
- Configure your browser to use a higher security
setting. In Internet Explorer, choose “Tools”
>> “Internet Options”, and
select the “Security” tab. Make
sure that the Internet Zone is configured to
Medium Security or above.
- Avoid downloading software from non-trusted
web sites, such as “warez” (illegal
software) sites.
- Install a firewall. Firewalls keep programs
from contacting the Internet without your permission.
Adware and Spyware cannot function without sending
information from your computer to the Internet.
- Scan your computer for Spyware. One free program
is Spybot Search and Destroy (http://www.safer-networking.org/en/index.html)
. Ad-Aware is another good tool to eliminate
Adware programs. (http://www.lavasoftusa.com/)
|
Print
Page
