Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq: Defeating Citibank Virtual Keyboard protection using screenshot method

Defeating Citibank Virtual Keyboard protection using screenshot method

From: aditya kuppa <aditya1010_at_gmail.com>
Date: Fri, 18 May 2007 01:48:32 +0530

How about this Trojan ;)
http://www.hispasec.com/laboratorio/troyano_video_en.htm
looks great method to get the Password if the inputs are
scrambled,rotated randomly after each entry etc.
Combination of trojan like this +a simple keylogger +a MITM can defeat
all possible authentication mechanism Multi Factor,channel
authentications like OTP,SMS based logging etc
Regards
AK
Researcher
Received on May 17 2007

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]