Re: thai cyber cafes use key-logging to steal bank acct #s

From: "maxwell" <mmmaxwell@xxxxxxxxxxx>
Date: Tue, 24 Apr 2007 16:59:36 GMT

"Galoubet" wrote ...

demodubious wrote:

Ok maxwell, good point.

Is there anyway at all to detect AND DETER such software?

Banks in the UK (or at least *my* banks in the UK!) don't just use
passwords to log on. You have to select letters from your chosen
security word at random with your mouse. The chosen letters are never
requested in the same order. There's no way a key logger would help a
would be thief here.

The choice of random letters from a security word is very good, and defeats (at least for minimum one time use, and if subsequent uses are not on the same hacked network, even beyond the exhaustion of all letter positions over the course of multiple logons) a method I'll not describe here that *could* capture the 'virtual keyboard' supplementary password as used by my HSBC online accounts.

Ok, my SCB bank in Thailand only requests one password to log on which
is rather careless. But as this bank doesn't permit transfer of funds
to another bank online I suppose the money can't go far. A would be
thief could, however, top up their mobile phone accounts from my bank
if they got access!

There are no other 'make payment' arrangements that can be setup with them online?

I never use cyber-cafes.

I do so when traveling light or staying in less-than-very secure lodgings (typical when touring about), for messages from and to stateside sent via one of my throwaway email accounts, though any high priority notifiers I prefer go by phone.

Galoubet

Cheers,
-maxwell

.

Follow-Ups:
- Re: thai cyber cafes use key-logging to steal bank acct #s
  - From: Galoubet

References:
- thai cyber cafes use key-logging to steal bank acct #s
  - From: demodubious
- Re: thai cyber cafes use key-logging to steal bank acct #s
  - From: maxwell
- Re: thai cyber cafes use key-logging to steal bank acct #s
  - From: demodubious
- Re: thai cyber cafes use key-logging to steal bank acct #s
  - From: Galoubet

Prev by Date: Dr. Farungsan and Busakorn
Next by Date: Crime Statistic in Thaitown, Los Angeles
Previous by thread: Re: thai cyber cafes use key-logging to steal bank acct #s
Next by thread: Re: thai cyber cafes use key-logging to steal bank acct #s
Index(es):
- Date
- Thread

Relevant Pages

Re: Uncrackable Passwords
... What does the domain registration info have to do with anything? ... Long passwords can easily surpass 68 characters and some do. ... There are more than 1,000 other letters that no ... doesn't look like you spent much time on that white paper: ...
(microsoft.public.windowsxp.general)
Re: Cracking simple password encryption
... > I am trying to figure out the password encryption scheme used by some ... > was this list anyway) about decrypting passwords that were XOR ... Look at the first letters. ... Computer Emergency Response Teams, and Digital Investigations. ...
(Security-Basics)
Re: Free Random Password Generator
... (equal to the log base 2 of the probability of each of the fourth letters ... It is at present set up to produce passwords of max length 8 characters. ... * letter with the probability p/count. ...
(comp.security.unix)
Re: Absurd password (rant)
... For run-of-the-mill passwords I use the last six digits of the number the ... Four letters and four ... names (such as working alphabetically down a list of my colleagues' ...
(alt.usage.english)
Re: How to cryptanalysis of Japanese PURPLE cipher machine.
... There is an "interval method" of rotor wiring, ... stepping switches was the "fast" bank, the one that advanced with each ... cryptanalysts much known plaintext to work with. ... letters and 20 letters made it possible to confirm such matches. ...
(sci.crypt)