- Get link
- Other Apps
Keylogger is one of the most dangerous malicious applications. Through it, hackers can obtain any confidential information, including the user's payment information.
Modern malware typically consists of several components, each with its own purpose. Such software most of all resemble a Swiss army knife, and not a set of separate tools, which gives an attacker the ability to perform many different actions on the attacked system. One of the components often presents in such an attack is a keylogger, a highly specialized tool that records all keystrokes. It is with the help of this tool that an attacker can stealthily take over a huge amount of confidential information, remaining unnoticed.
Keylogger Definition
A keylogger is any component of software or hardware that can intercept and record all manipulations with a computer keyboard. Often, a keylogger is located between the keyboard and the operating system and intercepts all user actions. This tool either stores the intercepted information on the infected computer or, if it is part of a larger attack, all data is immediately transmitted to the remote computer of the attackers. Although the term "keylogger" is usually referred to as malware, it is sometimes used by law enforcement agencies.
Types of Keyloggers
Although there is a wide variety of keylogger options, the main division is made into software and hardware. The most commonly used software keylogger is part of a malicious program such as a Trojan or rootkit. As a rule, this is also an easier option for gaining access to the system of interest without physical intervention. One of the most common types of software keyloggers can deploy a ready-made API to the target machine that records every keystroke. Keyloggers implemented at the level of the system kernel, Attacker-in-the-Browser spyware adds -on and other more complex constructions are also used.
Hardware keyloggers are less common because they are more difficult to implement on the target machine. Such keyloggers must be installed with direct access to the computer, which increases the risk of being declassified. By the way, sometimes such things are satisfied at the production level, sometimes even embedded in the BIOS. Keyloggers can often be embedded in USB devices: storage devices or subtle adapter plugs in the keyboard cord. Although spyware hardware is more difficult to install, it is more flexible and less dependent on the operation of the attacked system.
Infection Method
Software keyloggers are often installed as part of complex malicious software. Target computers can be infected during a hidden boot when visiting an infected site. Often, keyloggers can be implemented in various ways and, under various pretexts, are embedded in completely legal software. Hardware keyloggers are installed by an attacker who has physical access to the computer of interest.
Detection and Removal
It is not easy to detect malicious keyloggers because they do not always behave like many other malicious programs. They do not search for valuable information and do not send it to a remote server, they do not try to destroy data on an infected machine. Keyloggers do their job quietly and unnoticed. Antivirus programs can scan, detect, and destroy all variants of keyloggers known to them. However, keyloggers designed to target a specific user are not easy to identify, since they are most often not registered as known malicious software. Nevertheless, sooner or later, they are discovered as soon as they begin to manifest themselves by unauthorized sending data to a remote server.
If the user suspects that a keylogger is installed on his computer, then a number of tricks will help protect against the pest. For example, boot the operating system from a CD or USB drive, or use the virtual on-screen keyboard. There are also specialized protective tools, for example, secure input is implemented in Protegent360 Total Security
Comments
Post a Comment