• A hardware-based keylogger can modify the BIOS-level firmware associated with keyboard events and record keystroke events when they are processed.
• Sometimes, attackers get control over the physical computer and install a hardware circuit between the keyboard and the computer. These hardware devices normally are in line with the keyboard’s cable connector. These devices secretly collect information about keystrokes of users.
• A hardware-based keylogger can intercept the packets transferred between a wireless keyboard and its receiver and collect information about keystrokes.
• Sometimes, attackers use keyboard overlays to steal ATM PINs. They place this over the actual keyboard, and whenever any key is typed, it collects information about it.
• Attackers can use a small piece of hardware that can monitor the sounds made while typing on a keyboard and analyze them to guess whatever is typed.

How to prevent keyloggers?

There are a couple of countermeasures that can safeguard us from keyloggers.

• Anti-keyloggers can be used to detect keyloggers. They are a piece of software that can detect keyloggers by comparing files in the computer with that of common keyloggers. Normally, these anti-keyloggers have a higher probability of detecting keyloggers than normal anti-virus.
• Rebooting a computer using LiveCD or Live USB is a possible countermeasure for keyloggers.
• Some anti-virus or anti-spyware programs are quite effective in detecting keyloggers.
• Network monitors can be used to protect against keyloggers. They monitor network traffic and issue an alert whenever an application tries to make a network connection to a remote computer and thus prevent keystroke information from getting transferred to the attacker.
• You may want to use a good password manager. This can prevent keyloggers as the user does not need to type a password on the keyboard.
• Some web applications like that of banks allow typing through on-screen keyboards. This is possible protection against keyloggers as it is safer to type through on-screen keyboards.
• Keystroke Interference Software is a piece of software that attempts to trick keyloggers by introducing random keystroke information and thus makes it much more difficult for the attackers to extract meaningful information.

I hope this helps. Interested readers who want to know more about how different malware and cyberattacks work and how we can prevent them may want to refer to the book “A Guide To Cyber Security.”

Security Fundamentals Practice Tests

The Security Fundamentals Practice Tests test one’s fundamental knowledge of cyber security. The practice tests are good for those who are preparing for various certification exams like the CCNA, CCNP, or CompTIA. They are also good for students and IT/security professionals who want to improve their understanding of cybersecurity.