Keyboard Threat

[Cider]

How does these things work?

Send out the info via email or wait for someone to take it off the device?

i.e unplugging the device and taking it home.

This is when you hijack the person :P

[nihil]

The ones I have seen would require removal from the target machine and attaching to a machine with the management software on it. The basic idea of these devices is that they do not interact with the PC, only with the keyboard, so they are undetectable by security software.

OK, I hear you say, but they are pretty bloody obvious aren't they?............. well yes, they are, but only if you look and know what you are looking at. The average user probably never looks round the back of a computer at all, and in many office environments I have experienced, the actual computer is tucked away under a desk so it would take a fairly determined effort to get to it.

I see three potentially vulnerable environments:

1. A corporate or institutional network, particularly if it is multi-site. Here the admins can remotely scan for malware, block traffic, analyse traffic and so on. They cannot spot a physical keylogger though. Sure, it would have to be an inside job, but do you know who works for your office cleaning company or security service?............... do they know?

2. Internet Cafe: pretty obvious, but the owner or manager should be vigilant and there should be some sort of enclosure to prevent access to the ports.

Is it legal to inspect the box if it is concealed in a closed shelf or wood around it?

Non-destructive inspection is generally "legal", but only if she is a consenting adult

I don't like the idea of what you are suggesting............. sounds like a recipe for heating and ventilation problems. I prefer using "expanded metal" such as is used in security screens.

3. The internet games room. I don't know if you have these, but with all Public Libraries providing free access as well as local government and other sites providing wireless hotspots, these are more common than the internet cafe over here. Scumbags are very avid in trying to steal your "gelt" or whatever, so they want your ID and password. Once again, the security should be the same as for a wireless cafe, but....................can you trust the owner/manager?

This is when you hijack the person :P

Well, not quite, it is at that moment in time that the green curved device with "this side towards the enemy" embossed on it, is activated

I have never seen one on a PC TBH but I do alot of CC transactions at an Internet Cafe for some reason

This implies that you are getting paid whilst AO is doing all the work?

// off topic//

Can you get hold of those Zimbabwe banknotes for millions of whatevers (dollars?).............. I have an idea for making some AOers some money for Christmas ............ and yourself of course!