Spyware getting nastier, says Aladdin

Security Nicking passwords like candy from a baby

By Guy Matthews

Thu Sep 15 2005, 12:45

SECURITY VENDOR Aladdin Knowledge Systems says 15% of spyware is successfully stealing passwords and logging keystrokes.

It says spyware is increasingly used to steal logged-on user names and administrator passwords, as well as tamper with instant messaging and email addresses. Aladdin's study illustrates that a growing amount of spyware is specifically designed for identity theft and continues to compromise both personal and commercial privacy, with potentially dangerous effects for large organizations in need of protecting proprietary information.

The vendor classifies spyware into three clear types:

Severe Threat - 15% of spyware threats send private information gathered from the end user currently logged on to the infected system, logging the user's keystrokes, logged-on user name, hash of administrator passwords, email addresses, contacts, instant messengers login and usage, and more.

Moderate Threat - 25% of spyware sends information gathered from the victim's operating system, including the host name, domain name, and logs all processes running in memory.

Minor Threat - 60% of spyware transmits gathered commercial information about the end user's browsing habits, including keywords used in search engines, browsing habits and ratings of frequently visited websites. µ

Complete INQUIRER channel coverage at TheChannelINQ.net

China starts micro-managing micro-blogging New rules over social blogging Friday, 16 December 2011, 11:14 AM Read more	Microsoft explains its use of UEFI to 'secure' boot process Could finally signal the end of BIOS Friday, 23 September 2011, 16:58 PM Read more
OS X Lion flaws compromise account password security Password hashes exposed through directory services Tuesday, 20 September 2011, 12:33 PM Read more	Samsung Galaxy S III specs surface With a quad-core processor Monday, 19 September 2011, 15:12 PM Read more
Hack against The Sun was planned for two weeks Lulzsec is still front page news Tuesday, 19 July 2011, 13:45 PM Read more	Hackers prank Canada's Harper with a hash brown Fake press release says he choked Thursday, 9 June 2011, 09:53 AM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

Service Delivery Manager

Service Delivery Manager - ...

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

Spyware getting nastier, says Aladdin

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review