Nama alatnya itu keylogger..
Keylogger merupakan sebuah alat atau software yang mampu merekam aktifitas penekanan tombol pada keyboard. Sebagai “ancaman klasik” akan keamanan, sampai saat ini tidak ada metode yang benar-benar ampuh menghapus 100% ancaman akan keylogger. jadi dia akan merekam semua urutan tombol keyboard yg kita tekan, biasanya sih untuk nyari tau password aja.. http://ilmukomputer.com/2007/05/13/cara-membuat-keylogger-dan-antinya-pada-sistem-operasi-windows/
HATI2 KALAU MEMAKAI PC DI TEMPAT UMUM (SEPERTI INTERNET CAFE, DLL...)
CEK BELAKANG PC DAN LIHAT APAKAH ALAT INI ADA DI BELAKANG PC, BILA ADA, JGN PAKAI PC ITU!!!!
Alat ini dicolok diujung kable keyboard yg terhubung ke PC, ini digunakan untuk menyimpan semua yg telah diketik oleh keyboard itu... Kebanyakan ini dipakai di internet kafe, pameran, hotel dan bandara. Maka berhati2lah terutama anda yg menggunakan internet di tempat seperti itu untuk mengakses account bank online atau site penting lainnya. Setelah anda masuk ke account bank, dan setelah selesai, meninggalkan PC, itu akan dgn mudahnya untuk membuka account itu kembali dgn apa yg sebelumnya anda ketik, yg telah tersimpan di dlm Black Device. Jadi, sebaiknya anda cek dlu PC nya apakah ada sesuatu yg mencurigakan di belakangnya sebelum menggunakan internet di tempat umum untuk mengakses site penting Semoga informasi ini berguna untuk anda semua.. dan mencegah terjadinya hal2 yg tdk diinginkan
Keyloggers: Why Banks Need Two-Factor Authentication
Tim Bass
Tim Bass
Mon, 14 Jan 2008 11:55:21 +0000
Recently I briefed banking executives*in Bangkok on how easy it is to steal userIDs and passwords from their on-line banking customers and why they*must have two-factor authentication.** To illustrate*my key*points, I showed*the captive audience*various pictures of hardware keyloggers, for example the small black keylogger circled in the figure below.There are PS2 keyloggers (illustrated above)*and USB keyloggers. There are even keyboards with the keyloggers built into normal looking keyboards, so you have no idea a keylogger is there.*** Don’t believe me?** You can search the net and find so many!
Today I was reminded about my recent meeting in this Network World article, Two-factor authentication: Hot technology for 2008.* This article mentions numerous token-based two-factor authentication (2FA) solutions.* However, it misses a popular and inexpensive two-factor authentication used here in Thailand and APAC:* SMS-based 2FA.In a nutshell, SMS-based 2FA involves having your on-line banking system send an SMS message with a one-time password (OTP) to your cell phone.** You then must enter the OTP to complete your transaction.Is this a perfect solution?No.But, it is much better than than just passwords!A*ten year old child can easily steal your userID and password, really.
Recently I briefed banking executives*in Bangkok on how easy it is to steal userIDs and passwords from their on-line banking customers and why they*must have two-factor authentication.** To illustrate*my key*points, I showed*the captive audience*various pictures of hardware keyloggers, for example the small black keylogger circled in the figure below.There are PS2 keyloggers (illustrated above)*and USB keyloggers. There are even keyboards with the keyloggers built into normal looking keyboards, so you have no idea a keylogger is there.*** Don’t believe me?** You can search the net and find so many!
Today I was reminded about my recent meeting in this Network World article, Two-factor authentication: Hot technology for 2008.* This article mentions numerous token-based two-factor authentication (2FA) solutions.* However, it misses a popular and inexpensive two-factor authentication used here in Thailand and APAC:* SMS-based 2FA.In a nutshell, SMS-based 2FA involves having your on-line banking system send an SMS message with a one-time password (OTP) to your cell phone.** You then must enter the OTP to complete your transaction.Is this a perfect solution?No.But, it is much better than than just passwords!A*ten year old child can easily steal your userID and password, really.
So, the next time you are at an Internet cafe, trusting your SSL link to your bank, don’t forget to take a peek at the computer and look for a small keylogger.***
Well, on the other hand, also don’t forget to bring your own keyboard
No comments:
Post a Comment