Sunday, July 02, 2006
RoboForm Defeats KeyLoggers & Fights Phishing
RoboForm Defeats KeyLoggers
A computer that you use may have a keylogger installed on it, especially if this is a computer at internet cafe or at your work. Keyloggers steal your passwords if you manually type them and a third party (your employer, your wife, your competitor or simply a hacker) will be able to log into your accounts using stolen passwords. Keyloggers may be hard to detect due to their stealthing abilities.
RoboForm/Pass2Go starting with ver 6.7.4 provides substantial protection against keyloggers.
Master Password.
Use RoboForm Virtual Keyboard to type your Master Password and keyloggers will not see it. With Virtual Keyboard you click images of keyboard buttons with mouse, not the actual buttons on keyboard, so no keyboard events are generated and keylogger do not see what you type.
Web Site Passwords.
More advanced keyloggers may attach to Internet Explorer and get password directly from the password field using IE page model. In this case they can get even passwords that are not typed. RoboForm provides two types of protection against this:
• Quick Typing. Roboform enters password quickly and it presses Submit button quickly, so many keyloggers will not be fast enough to get web page password from the page. Some keyloggers, though, may be fast enough.
• Firefox Factor. Firefox is more closed than Internet Explorer and attaching to it in order to steal passwords directly from fields is more difficult. We have yet to see a keylogger than can steal password directly from Firefox password field when keyboard is not used to enter it.
RoboForm Fights Phishing
RoboForm® is an effective way to help prevent the phishing scams plaguing Internet users today.
Phishing -- the illegal practice of posing as a trusted business or financial institution online in order to deceptively obtain sensitive personal data -- can be exposed when individuals use RoboForm.
Typically a phisher will send an email asking the recipient to visit a web page to confirm sensitive account information. The page will look identical to the business' real page, but is in fact a fake. When the victim types in his or her confidential information on the page, the data is sent to the criminal and the scam is complete.
What makes RoboForm an effective anti-phishing tool, is its practice of securely storing the URL, or Internet address, of sign-in pages in a passcard.
RoboForm shows Passcard as matching only if a URL stored in passcard matches an online URL. If a potential victim routinely uses RoboForm to log-in to web sites, they will not be able to log-in to a fake site because the URL of fake web site would not match URL stored in passcard for the real web site. Users will be tipped off, exposing the fake web site as a phishing scam.
Similarly, when user logs in to account using RoboForm, RoboForm would fill only the login page that has URL that matches URL stored in passcard.
Finally, anytime a user fills in credit card, social security, or other sensitive info using RoboForm, the software automatically opens a warning box stating that the web site is asking for sensitive info. The admonition is an important reminder for RoboForm users.
Every time the warning box appears, users should carefully double-check the URL listed in their web browser. For example, 'www.bankofamerica.com' should appear, not ' www.bankonamerica.com.' If there is any difference at all, there is a good chance the page is a fake.
Free Download RoboForm
A computer that you use may have a keylogger installed on it, especially if this is a computer at internet cafe or at your work. Keyloggers steal your passwords if you manually type them and a third party (your employer, your wife, your competitor or simply a hacker) will be able to log into your accounts using stolen passwords. Keyloggers may be hard to detect due to their stealthing abilities.
RoboForm/Pass2Go starting with ver 6.7.4 provides substantial protection against keyloggers.
Master Password.
Use RoboForm Virtual Keyboard to type your Master Password and keyloggers will not see it. With Virtual Keyboard you click images of keyboard buttons with mouse, not the actual buttons on keyboard, so no keyboard events are generated and keylogger do not see what you type.
Web Site Passwords.
More advanced keyloggers may attach to Internet Explorer and get password directly from the password field using IE page model. In this case they can get even passwords that are not typed. RoboForm provides two types of protection against this:
• Quick Typing. Roboform enters password quickly and it presses Submit button quickly, so many keyloggers will not be fast enough to get web page password from the page. Some keyloggers, though, may be fast enough.
• Firefox Factor. Firefox is more closed than Internet Explorer and attaching to it in order to steal passwords directly from fields is more difficult. We have yet to see a keylogger than can steal password directly from Firefox password field when keyboard is not used to enter it.
RoboForm Fights Phishing
RoboForm® is an effective way to help prevent the phishing scams plaguing Internet users today.
Phishing -- the illegal practice of posing as a trusted business or financial institution online in order to deceptively obtain sensitive personal data -- can be exposed when individuals use RoboForm.
Typically a phisher will send an email asking the recipient to visit a web page to confirm sensitive account information. The page will look identical to the business' real page, but is in fact a fake. When the victim types in his or her confidential information on the page, the data is sent to the criminal and the scam is complete.
What makes RoboForm an effective anti-phishing tool, is its practice of securely storing the URL, or Internet address, of sign-in pages in a passcard.
RoboForm shows Passcard as matching only if a URL stored in passcard matches an online URL. If a potential victim routinely uses RoboForm to log-in to web sites, they will not be able to log-in to a fake site because the URL of fake web site would not match URL stored in passcard for the real web site. Users will be tipped off, exposing the fake web site as a phishing scam.
Similarly, when user logs in to account using RoboForm, RoboForm would fill only the login page that has URL that matches URL stored in passcard.
Finally, anytime a user fills in credit card, social security, or other sensitive info using RoboForm, the software automatically opens a warning box stating that the web site is asking for sensitive info. The admonition is an important reminder for RoboForm users.
Every time the warning box appears, users should carefully double-check the URL listed in their web browser. For example, 'www.bankofamerica.com' should appear, not ' www.bankonamerica.com.' If there is any difference at all, there is a good chance the page is a fake.
Free Download RoboForm
Labels: software
1 Comments:
Make Money
Recent Posts
Archive
January 2006April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
February 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
December 2007
January 2008
February 2008
April 2008
May 2008
July 2008
August 2008
September 2008
October 2008
November 2008
January 2009
May 2009
June 2009
July 2009
August 2009
September 2009
December 2009
March 2010
June 2010
July 2010
September 2010
October 2010
November 2010
January 2011
March 2011
February 2013
April 2013
September 2013
December 2013
August 2014
September 2014
October 2014
November 2014
January 2015
January 2016
September 2018
October 2018
November 2018
December 2018
January 2019
February 2019
March 2019
April 2019
May 2019
June 2019
July 2019
August 2019
September 2019
October 2019
November 2019
December 2019
January 2020
February 2020
March 2020
April 2020
May 2020
June 2020
July 2020
SEO Stats
Not cool!