Hackers installing keyloggers at a record rate

By Bill Brenner, News Writer 15 Nov 2005 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

Keyloggers are becoming an indispensable tool for online fraudsters, if research from iDefense is any indication. The digital underground is on pace to launch an unprecedented 6,191 keyloggers by year's end -- a 65% spike from the 3,753 released last year.

"Keylogging is a very effective method for hackers," Joe Payne, vice president of iDefense Security Intelligence Services, a division of Mountain View, Calif.-based VeriSign Inc., said in a statement released Tuesday. "Fraudsters can launch hundreds of keylogging attacks around the world in seconds, gathering sensitive data to conduct large-scale monetary transfers for their illegal activities."

Security experts have fingered keyloggers as one of the more insidious forms of spyware.

In August, for example, Clearwater, Fla.-based Sunbelt Software said keylogging software was being used to collect user IDs, passwords, bank account balances and other personal information as part of a massive identity theft ring it stumbled upon while doing research on an exploit using CoolWebSearch, a program connected to the distribution of spyware and adware. The company contacted the FBI and Secret Service and both launched investigations.

Related content on keyloggers 'Whispering keyboards' making noise again How to detect and prevent keylogger attacks

"Once a keylogging program is activated, it provides hackers with personal data such as an address, account numbers, mothers' maiden names or passwords -- any strings of text a person might enter online," iDefense noted in its statement. "Using this information to assume another's identity, hackers run up charges averaging $3,968 per victim, according to a Nationwide Mutual Insurance Co. survey. Sixteen percent of victims were required to pay for at least some of this fraud, and spent an average of 81 hours to resolve their cases, reported the survey."

iDefense said hackers use a variety of techniques to gather and filter logged keystrokes, including the Internet Relay Chat (IRC) system. Some groups create and sell keylogging programs to identity thieves, while others sell the stolen data itself, iDefense added.

"There are so many victims because so few know the risk or the early warning signs; you simply can't stop what you can't see," Payne said. "In addition to basic protections like up-to-date antivirus programs and well-configured firewalls, the best defense for keylogging is to carefully track the organizations and hackers who promulgate these programs."

Tags: Identity Theft and Data Security Breaches,  Malware, Viruses, Trojans and Spyware,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Identity Theft and Data Security Breaches Health Net healthcare data breach affects1.5 million Massive T-Mobile UK security breach involves insiders Chip and PIN adoption serves lesson for U.S. payment industry Group to shed light on secure identity management threats Heartland CIO is critical of First Data's credit card tokenization plan Heartland CIO on end-to-end encryption, credit card tokenization Heartland CIO on PCI, E3 project Visa probes tokens, encryption for PCI card data protection University data breach exposes 163,000 women to identity theft TJX thrives following breach, bucks sour economy Malware, Viruses, Trojans and Spyware The world's top 5 riskiest domains New Zeus spam poses as Social Security statements Increase in Gumblar backdoors poses FTP credential problems Hackers to sharpen malware, malicious software in 2010 iPhone worm Rickrolls jailbroken phones Israeli Mossad add Trojan Horse to Syrian laptop Schneier-Ranum Face-Off: Is antivirus dead? Modern malware, stealthy botnets, adapt quickly, expert says Computer worm infections up, scareware antivirus down, Microsoft says Web-based attacks skyrocket, pirating sites surge, security firms say

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary bot worm  (SearchSecurity.com) CISP-PCI  (SearchFinancialSecurity.com) cookie poisoning  (SearchSecurity.com) drive-by pharming  (SearchSecurity.com) extrusion prevention  (SearchSecurity.com) identity theft  (SearchSecurity.com) parameter tampering  (SearchSecurity.com) pretexting  (SearchCIO.com) Rock Phish  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary