Results 1 to 6 of 6
  1. #1
    Join Date
    Oct 2002
    Posts
    13,277

    Lightbulb

    Sometime you must have gone to a cyber cafe or used public computers to access the internet or mail.

    Public computers are most prone to password hacking. Anyone can simply install a keylogger software to hack your password. Keylogging is one of the most insidious threats to a users personal information. Passwords,credit card numbers,etc.

    It is very easy for the keylogger to harvest passwords. Each and every keystroke (whatever you type on the keyboard) gets recorded in the keylogger software and the person installing it can easily view what you have typed in.

    For example,if you go to hotmail.com and check your mails. Say your ID is [email protected] and password is snoopy2,the keylogger software records your usename and password in its log file as

    [email protected]

    Risky isnt it???!!!

    Theres a solution to this problem and you can easily fool the software!!

    The keylogger software sees and records everything,but it doesnt understand what it sees,it does not know what to do with keys that are typed anywhere other than the password or user name fields.

    So between successive keys of the password if you enter random keys,the keylogger software wont ever come to know where you typed in what..

    In the process of recording the keys,the string that the keylogger receives will contain the password,but embedded in so much random junk that discovering it is infeasible.

    So...

    1. Go to hotmail.com or yahoo.com or any other site where you need to insert a password or PIN.

    2. Type in your user ID.

    3. Type in the first characterof the password.

    4. Click on the address bar in the browser,type in some random charachters.

    5. Again go to password field and type in the second character of the password and probably third too.

    6. Again go to the address bar and type in a few more random characters.

    7. Back to the password field and the next characters of the password.

    Keep on repeating the process till you type in the full password in the password field.

    Instead of the password snoopy2,the keylogger now gets:
    www.hotmail.comspqmlainsdgsosdgfsodgfdpuouuyhdg2

    Heres a total of 26 random characters have been inserted among the 7 characters of the actual password!!!

    No doubt it takes a little bit of more time than the usual process,but you are safe and secure that way!!!





    Tinyurl is the answer for posting long urls!!!

  2. #2
    Join Date
    Feb 2007
    Posts
    1,250
    Nice tip.
    Need money? Got money? Want to talk? The Money Forums
    New! Web hosting jobs!

  3. #3
    Join Date
    Oct 2005
    Location
    UK
    Posts
    552
    Just a quick tip: don't use computers that you don't have full control over to enter sensitive information. If you have a wireless network or are on a public network with your own device, use a VPN, which eliminates the issue of network snooping.

    A lot of key logging software is much more advanced than you have described; they can detect which fields are pressed and only record that information. E.g. Clicking on the password field, then address bar, then password field and typing characters in each probably wont fool it.

    Your password will probably be easy enough to pick out of garbled junk letters anyway, as they usually aren't truly random. So, if the person who has setup the key logger has it so that he can come back and get all the keystrokes, he can pick out your password easily enough.

    Basically, if you know the computer has malware, trogans, viruses or any other malicious infections or applications (keyloggers included) or even has the possibility of having any of the aforementioned installed, just don't use it. I really wouldn't trust any of my sensitive information to a public computer at any rate.

    If you really have to enter sensitive information on a public or unsecured network, use two-factor authentication devices and change your password when you next use a private computer.

    Have fun,

  4. #4
    Join Date
    May 2009
    Location
    SLASH ROOT
    Posts
    853

  5. #5
    Great Tips.. Well written..

  6. #6
    Join Date
    Feb 2007
    Location
    Florida
    Posts
    1,930
    How does this defeat the loggers that also record screen captures?
    -Joe @ Secure Dragon LLC.
    + OpenVZ Powered by Wyvern | KVM | cPanel Hosting | Backup VPSs | LowEndBoxes | DDOS Protection
    + Florida | Colorado | Illinois | California | Oregon | Georgia | New Jersey | Arizona | Texas

Similar Threads

  1. Sending login and password to password protect dir using Php
    By joshuayip in forum Programming Discussion
    Replies: 5
    Last Post: 05-29-2005, 07:54 PM
  2. :: Calling all cyber cafe owners ::
    By eservicesu in forum Web Hosting Lounge
    Replies: 11
    Last Post: 12-16-2003, 11:35 PM
  3. Cyber cafe Client software?!?!
    By eservicesu in forum Web Hosting Lounge
    Replies: 10
    Last Post: 11-19-2003, 10:37 AM
  4. :Update on Cyber Cafe:
    By eservicesu in forum Other Offers & Requests
    Replies: 13
    Last Post: 11-13-2003, 05:45 PM
  5. Replies: 0
    Last Post: 08-16-2002, 08:36 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •