My suggestion to all is always try to avoid accessing your bank accounts or mailbox from public computers (cyber cafes…etc). With all the keyloggers that may be stuffed in public computers, they pose a serious security threat to users. Keyloggers mean not just Trojans, but commercial keyloggers as well.
Key Loggers are software or hardware tools that capture the user’s keystrokes from keyboard. This can be useful to determine sources of error in computer systems and is sometimes used to measure employee productivity on certain clerical tasks. But, keyloggers are widely available on the Internet and can be used by private parties to spy on the computer usage of others hence stealing users private data.
I want to let all of you know how to protect yourself from keyloggers. Our aim here is to confuse the keylogger by making it log some gibberish instead of our valid password. Of course, this is not completely foolproof though. Nothing is foolproof on the net. We only have to make it harder for the hacker.(Note: These are tips I personally follow. If you have better ones, let everyone know by commenting here.)
We’ll be dealing with two types of keyloggers: software and hardware keyloggers.
Let’s say we have to enter a password ‘hello’.
In this case we managed to enter 2 unwanted characters as against one in the first step.
Continue in a similar way to finish typing the password. You can choose any number of random characters between your password.
So the keylogger will log something like:
[click]h[click]$[click]e[click]![click]#[click]l[click] z[click]l[click]c[click]o
Note how we deleted the unwanted characters without using back space key or delete key also mouse click is recorded before the random letters also. You can also experiment entering the password in the reverse order, infact any order.
This method can be used for entering the username too, since most banks have account numbers as username. If you are suffering from some keylogger phobia, use this technique while typing the url too.
One more alternate way for Microsoft users is to use one utility that comes with Windows is:
- On-Screen Keyboard (osk.exe) also “Virtual Keyboard”
You can launch this by any of the following ways:
I think you now know what to do with this. Go to the password box, then start using mouse to click the keys you find on the On-Screen Keyboard. This way the keylogger will record only clicks.
I personally use On-Screen Keyboard (osk.exe) also “Virtual Keyboard” to enter password to logging my bank accounts.
Another way is utilizing the browser’s search bar or address bar to camouflage the password.
For eg. Click the password box and type a letter of the password. Now click the browser’s address bar or search bar and type some unwanted letters. Alternate between the password box and address/search bar till you finish. The result will be the same as the former method.
Hardware key loggers are easy to find. They are devices which is attached in between keyboard and cpu junction. If you are really suspicious about them just check the back side of cpu and find if something is fishy. The images will give you a better idea.
Hardware key loggers are easy to find. They are devices which are attached between keyboard and CPU junction. If you are really suspicious about them just check the back side of CPU and find out if something is wrong. The images will give you a better idea.
Do share the link to all your friends.
If you have more tricks up your sleeve. just pass it on by posting a comment. i will add those to the same article.
| 2.5 |
|
If you enjoyed this post, please consider to leave a comment or subscribe to the feed and get future posts delivered to your feed reader.
 | 
|  |
Nihar’s World | 
Subscribe | Sitemap | WP Premium theme by WP Remix
© 2007–2008. Nihar’s World. All rights reserved
Comments
Leave a comment