Overclock.net › Forums › Industry News › Software News › [Stuff.co.nz] Anti-virus can't keep up with threat onslaught
New Posts  All Forums:Forum Nav:

[Stuff.co.nz] Anti-virus can't keep up with threat onslaught - Page 34

post #331 of 366
Quote:
Originally Posted by KarathKasun View Post

If you want total security(for your ID at least), do not put your CC# or SSN# into IE for whatever purpose. Sandbox or use a non persistent VM.

Key loggers beat sandboxing in protecting CC and SSN. wink.gif
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #332 of 366
Quote:
Originally Posted by DuckieHo View Post

Key loggers beat sandboxing in protecting CC and SSN. wink.gif

Just use an on screen keyboard to beat them for those purposes, beats the most common kind. Although, likely not going to be safe anymore with everything moving to the touch screen generation, they'll evolve to read them as well.
post #333 of 366
Quote:
Originally Posted by Shrak View Post

Just use an on screen keyboard to beat them for those purposes, beats the most common kind. Although, likely not going to be safe anymore with everything moving to the touch screen generation, they'll evolve to read them as well.

Well... the point comes back to the fundamentals of security. You have to keep making harder

* Nothing is ever completely secure as long as someone/something (even if only one authorized user) can access.

* There is a trade-off become security vs usability. Who wants to memorize a daily randomized 256 char passwords for each log in?

* Locks/security is not meant to stop intrusion. Locks/security only increase cost/time/effort to defer intrusion. Therefore, more effective layers of security is often better. (This is why you run AV.... zero/low cost to run but provides some benefit.)

* The types of system security are:
1) by obscurity - make it harder to get data
2) by correctness - identify how code should always work and make it operate as expected
3) by isolation - prevent one breach access to other components
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #334 of 366
I say biometrics really needs to become mainstream, password logging would be a thing of the past.

Fingerprint plus voiceprint (or face recognition) is better than most any password if implemented well.
Hax Box
(14 items)
 
Serv Box
(16 items)
 
Computer #2
(7 items)
 
CPUMotherboardGraphicsRAM
FX-4100 AsRock 970 Extreme 3 HD 2900 Pro G.Skill 
Hard DriveCoolingOSMonitor
Whatever is available Scythe Katana 2 Windows 7 Pro X64 Acer AL2016W 
MonitorPowerCaseMouse
LG 42PQ30 Rosewill 1200w SilverStone Logitech MX-500 
AudioOther
Onboard Pioneer VSX-D514 
CPUCPUMotherboardGraphics
Xeon Prestonia (Northwood) LV 2.4 Xeon Prestonia (Northwood) LV 2.4 Tyan Tiger I7501 Rage XL Integrated 
RAMHard DriveHard DriveHard Drive
2GB DDR 2100 ECC Seagate Barracuda 1TB Seagate Barracuda 1TB Seagate 120GB 
Optical DriveCoolingOSPower
CD/DVD R/RW 2x CoolerMaster aluminum socket 604 coolers Windows 2000 Profesional ThermalTake Pure Power 430W 
OtherOtherOtherOther
4 Port USB 2 Controller Silicon Image 3512 - 2 Port SATA Raid Controller Debian 6 MineCraft Server X2 
CPUMotherboardGraphicsRAM
Phenom II X2 550 GA-880GM-UD2H R7 240 Corsair XMS 1333 2x2Gb 
OSPowerCase
Windows 7 X64 600w Dell mATX tower 
  hide details  
Reply
Hax Box
(14 items)
 
Serv Box
(16 items)
 
Computer #2
(7 items)
 
CPUMotherboardGraphicsRAM
FX-4100 AsRock 970 Extreme 3 HD 2900 Pro G.Skill 
Hard DriveCoolingOSMonitor
Whatever is available Scythe Katana 2 Windows 7 Pro X64 Acer AL2016W 
MonitorPowerCaseMouse
LG 42PQ30 Rosewill 1200w SilverStone Logitech MX-500 
AudioOther
Onboard Pioneer VSX-D514 
CPUCPUMotherboardGraphics
Xeon Prestonia (Northwood) LV 2.4 Xeon Prestonia (Northwood) LV 2.4 Tyan Tiger I7501 Rage XL Integrated 
RAMHard DriveHard DriveHard Drive
2GB DDR 2100 ECC Seagate Barracuda 1TB Seagate Barracuda 1TB Seagate 120GB 
Optical DriveCoolingOSPower
CD/DVD R/RW 2x CoolerMaster aluminum socket 604 coolers Windows 2000 Profesional ThermalTake Pure Power 430W 
OtherOtherOtherOther
4 Port USB 2 Controller Silicon Image 3512 - 2 Port SATA Raid Controller Debian 6 MineCraft Server X2 
CPUMotherboardGraphicsRAM
Phenom II X2 550 GA-880GM-UD2H R7 240 Corsair XMS 1333 2x2Gb 
OSPowerCase
Windows 7 X64 600w Dell mATX tower 
  hide details  
Reply
post #335 of 366
Quote:
Originally Posted by Shrak View Post

Just use an on screen keyboard to beat them for those purposes, beats the most common kind. Although, likely not going to be safe anymore with everything moving to the touch screen generation, they'll evolve to read them as well.

Would still be susceptible to form grabbers. tongue.gif
Budget build
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core 2 Duo E8200 @ 3.6 MSI P35 Neo ASUS HD6870 4GB Kingston Valueram DDR2 800Mhz 
Hard DriveOSMonitorPower
160GB WD + 1TB Samsung Windows 7 64bit BenQ E2400HD 1080p Antec 500w 
Case
Antec 1200 
  hide details  
Reply
Budget build
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel Core 2 Duo E8200 @ 3.6 MSI P35 Neo ASUS HD6870 4GB Kingston Valueram DDR2 800Mhz 
Hard DriveOSMonitorPower
160GB WD + 1TB Samsung Windows 7 64bit BenQ E2400HD 1080p Antec 500w 
Case
Antec 1200 
  hide details  
Reply
post #336 of 366
Quote:
Originally Posted by Shrak View Post

Just use an on screen keyboard to beat them for those purposes, beats the most common kind. Although, likely not going to be safe anymore with everything moving to the touch screen generation, they'll evolve to read them as well.

Almost every keylogger I know of doesn't rely on pressing actual keys or keystrokes, but just logs every character inputted.
The Fortress
(15 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 930 @ 4.0 GHz 1.28V Gigabyte X58A-UD3R Sapphire Radeon HD 5850 1GB 850MHz Core, 4800MH... Kingston 6GB 1528MHz 7-7-7-20-1T 
Hard DriveOptical DriveCoolingOS
WD Caviar Black 1TB LG WH10LS30 10X Blu-ray Burner CoolerMaster Hyper 212+ Windows 7 Ultimate 64-bit 
MonitorKeyboardPowerCase
Acer X233Hbd 23" 1080p Logitech Illuminated Keyboard BFG GS-650 Silverstone FT01 
MouseMouse PadAudio
Razer Naga Molten Edition Cloth Pad Philips 2.1 
  hide details  
Reply
The Fortress
(15 items)
 
  
CPUMotherboardGraphicsRAM
Intel i7 930 @ 4.0 GHz 1.28V Gigabyte X58A-UD3R Sapphire Radeon HD 5850 1GB 850MHz Core, 4800MH... Kingston 6GB 1528MHz 7-7-7-20-1T 
Hard DriveOptical DriveCoolingOS
WD Caviar Black 1TB LG WH10LS30 10X Blu-ray Burner CoolerMaster Hyper 212+ Windows 7 Ultimate 64-bit 
MonitorKeyboardPowerCase
Acer X233Hbd 23" 1080p Logitech Illuminated Keyboard BFG GS-650 Silverstone FT01 
MouseMouse PadAudio
Razer Naga Molten Edition Cloth Pad Philips 2.1 
  hide details  
Reply
post #337 of 366
Quote:
Originally Posted by Detroitsoldier View Post

Almost every keylogger I know of doesn't rely on pressing actual keys or keystrokes, but just logs every character inputted.

The old fashion way was just hooking the keyboard and log what keys were pressed. Now days they do the same thing except the keylogger has evolved into an advanced piece of software. It still hooks your keyboard and monitors what keys are pressed, but it now also monitors the clipboard to make sure your not just copy + pasting important information. And they also take screenshot of your entire desktop routinely to capture any important information you may have entered into a form or such. There is several more functions to them now days, but them are the basics of what you could expect one to do.
Main Rig
(14 items)
 
Linux Rig
(10 items)
 
 
CPUMotherboardGraphicsRAM
Athlon II x3 450 Biostar A880GZ PowerColor HD 4650 DDR3 4GB Samsung MV-3V2G3/US 
Hard DriveOptical DriveCoolingOS
Samsung 830 128GB (Pending) ASUS DRW-24B1ST Stock Windows 8 Enterprise x64 
KeyboardPowerCaseMouse
Logitech Classic 200 300w Hipro a1410n HP 1000 DPI 
Mouse PadAudio
Standard Realtek ALC662 
CPUMotherboardGraphicsRAM
AMD Sempron 3000+ ASUS A7V8X-LA VIA KM400A 2GB DDR 333 
Hard DriveOptical DriveCoolingOS
40GB Seagate Barracuda 7200.7 Samsung Writemaster Stock ASUS Ubuntu 12.04 
PowerCase
Hipro 250W SR1500NX 
  hide details  
Reply
Main Rig
(14 items)
 
Linux Rig
(10 items)
 
 
CPUMotherboardGraphicsRAM
Athlon II x3 450 Biostar A880GZ PowerColor HD 4650 DDR3 4GB Samsung MV-3V2G3/US 
Hard DriveOptical DriveCoolingOS
Samsung 830 128GB (Pending) ASUS DRW-24B1ST Stock Windows 8 Enterprise x64 
KeyboardPowerCaseMouse
Logitech Classic 200 300w Hipro a1410n HP 1000 DPI 
Mouse PadAudio
Standard Realtek ALC662 
CPUMotherboardGraphicsRAM
AMD Sempron 3000+ ASUS A7V8X-LA VIA KM400A 2GB DDR 333 
Hard DriveOptical DriveCoolingOS
40GB Seagate Barracuda 7200.7 Samsung Writemaster Stock ASUS Ubuntu 12.04 
PowerCase
Hipro 250W SR1500NX 
  hide details  
Reply
post #338 of 366
Quote:
Originally Posted by KarathKasun View Post

I say biometrics really needs to become mainstream, password logging would be a thing of the past.
Fingerprint plus voiceprint (or face recognition) is better than most any password if implemented well.

Biometrics is actually not that good. Biometrics is based analogue data... the values are not exact. Therefore, it becomes an issue of accuracy vs usability.
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
Once again...
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 [4.28GHz, HT] Asus P6T + Broadcom NetXtreme II VisionTek HD5850 [900/1200] + Galaxy GT240 2x4GB G.Skill Ripjaw X [1632 MHz] 
Hard DriveOSMonitorKeyboard
Intel X25-M 160GB + 3xRAID0 500GB 7200.12 Window 7 Pro 64 Acer H243H + Samsung 226BW XARMOR-U9BL  
PowerCaseMouseMouse Pad
Antec Truepower New 750W Li Lian PC-V2100 [10x120mm fans] Logitech G9 X-Trac Pro 
  hide details  
Reply
post #339 of 366
Quote:
Originally Posted by Shrak View Post

Just use an on screen keyboard to beat them for those purposes, beats the most common kind. Although, likely not going to be safe anymore with everything moving to the touch screen generation, they'll evolve to read them as well.

RoboForm, or something similar, is awesome for securing and easily entering passwords. I have a long, random password for each and every website I log into. Even if the credentials for one site somehow gets stolen from the server or however, all the others are wildly different. It comes with a random password generator, so setting up new accounts is a snap.

It also can securely store and reenter any number of other information.

Not only is it more secure, but it's also a breeze to log into website. Two clicks if you aren't on the site already - one click if you are.

I was apprehensive about using it at first. But, now that I've been using it a while, there's no way I could go without it.
Bueller
(15 items)
 
  
CPUMotherboardGraphicsRAM
i7 3770K 4.7Ghz @ 1.36v Asus Sabertooth Z77 Gigabyte Windforce 780 Ti 3GB 16GB Corsair Vengeance 1866 9-10-9-27 
Hard DriveOptical DriveCoolingOS
256GB Samsung 840 Pro + RAID1 2TB 7200 Hitachis LG 6X Blu-ray Burner Corsair H100i Windows 7 x64 
MonitorKeyboardPowerCase
Asus VG236HE XArmor U9BL-S Enermax Galaxy Evo 1250W Corsair 600T 
MouseMouse PadAudio
Logitech G500 SteelSeries 5L O2DAC -> Corsair SP2500 (or O2 amp and Beyerdyn... 
  hide details  
Reply
Bueller
(15 items)
 
  
CPUMotherboardGraphicsRAM
i7 3770K 4.7Ghz @ 1.36v Asus Sabertooth Z77 Gigabyte Windforce 780 Ti 3GB 16GB Corsair Vengeance 1866 9-10-9-27 
Hard DriveOptical DriveCoolingOS
256GB Samsung 840 Pro + RAID1 2TB 7200 Hitachis LG 6X Blu-ray Burner Corsair H100i Windows 7 x64 
MonitorKeyboardPowerCase
Asus VG236HE XArmor U9BL-S Enermax Galaxy Evo 1250W Corsair 600T 
MouseMouse PadAudio
Logitech G500 SteelSeries 5L O2DAC -> Corsair SP2500 (or O2 amp and Beyerdyn... 
  hide details  
Reply
post #340 of 366
lolz, you are really willing to go through all that hassles just to avoid using AV huh,
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [Stuff.co.nz] Anti-virus can't keep up with threat onslaught