Real Time Keylogging Makes OTP Log-In Obsolete (If you Type it...They will Come!)

Until providers see "what hackers clearly see"...  which is ANYTHING that is typed, whether it be credit/debit card numbers, usernames, passwords, (temporary, numeric, one-time, secret answers to secret questions etc. etc. etc.) our data will continue to be
compromised.  According to Help Net Security...

Now, word comes that Hackers have improved keylogging software by
making it able to report your login credentials in "real time" via a
Twitter-like stream of updates that makes it possible for malicious
hackers to access your accounts even as you're using them.

The efficiency of this new variant of keyloggers is best seen during
routine operations like usage of Internet banking services.

Systems like
RSA's SecurID create temporary numeric passwords that get changed each
minute. The problem is, the attacker now gets the same password
immediately.  

Editor's Note:  It will get worse...it will NOT get better. 

Think of Typing as sort of like a "Field of Dreams" for hackers. 

If you type it...they will come. 

Read Entire Article Here

Related articles by Zemanta

• Https = Httb.s. (pindebit.blogspot.com)


• Because There's No Patch for Human Stupidity (pindebit.blogspot.com)


• Bits: How Hackers Snatch Real-Time Security ID Numbers (bits.blogs.nytimes.com)