On 10/19/06, Lance James <phishing (at) securescience (dot) net [email concealed]> wrote:
> Some interesting stuff has been popping up with Virtual Keyboards as an
> idea to protect against phishing malware that does key-logging:
>
> Our research in the area of malware has led us to the conclusion that
> almost all virtual keyboard implementations have been a waste of time
> since 2003.
A more technical paper:
http://www.hispasec.com/laboratorio/New_technique_against_virtual_keyboa
rds.pdf
And a movie illustrates the whole process: http://blog.hispasec.com/virustotal/9
> Some interesting stuff has been popping up with Virtual Keyboards as an
> idea to protect against phishing malware that does key-logging:
>
> Our research in the area of malware has led us to the conclusion that
> almost all virtual keyboard implementations have been a waste of time
> since 2003.
A more technical paper:
http://www.hispasec.com/laboratorio/New_technique_against_virtual_keyboa
rds.pdf
And a movie illustrates the whole process: http://blog.hispasec.com/virustotal/9
Nothing really new, but a nice implementation...
Cheers,
Thorsten
[ reply ]