Bugtraq mailing list archives
Re: Defeating Citibank Virtual Keyboard protection using screenshot method
From: Reversemode <advisories () reversemode com>
Date: Wed, 09 May 2007 19:53:02 +0200
Hi Yash,
Severity: Critical Platforms Affected: Microsoft Corporation: Windows 98 Any version Microsoft Corporation: Windows Me Any version Microsoft Corporation: Windows XP Any version Microsoft Corporation: Windows 2000 Any version
[CUT] ... You are talking about a documented feature, neither a flaw nor a vulnerability. How can be an API rated?
Vendor Response:
No Response from Vendor yet
I cannot imagine Windows with BitBlt disabled... :) This is a known method widely used in banking trojans since a long time ago. Anyway, thanks for sharing your research. cheers, - Rubén.
Current thread:
- Defeating Citibank Virtual Keyboard protection using screenshot method yashks (May 09)
- Re: Defeating Citibank Virtual Keyboard protection using screenshot method Reversemode (May 09)
- Re: Defeating Citibank Virtual Keyboard protection using screenshot method Gadi Evron (May 09)
- RE: Defeating Citibank Virtual Keyboard protection using screenshot method Jim Harrison (May 09)
- Message not available
- RE: Defeating Citibank Virtual Keyboard protection using screenshot method Jim Harrison (May 09)
- RE: Defeating Citibank Virtual Keyboard protection using screenshot method Gadi Evron (May 09)
- RE: Defeating Citibank Virtual Keyboard protection using screenshot method Jim Harrison (May 09)
- RE: Defeating Citibank Virtual Keyboard protection using screenshot method Gadi Evron (May 10)
- RE: Defeating Citibank Virtual Keyboard protection using screenshot method David Gillett (May 10)
- Re: Defeating Citibank Virtual Keyboard protection using screenshot method Florian Weimer (May 10)
- Re: Defeating Citibank Virtual Keyboard protection using screenshot method Ansgar -59cobalt- Wiechers (May 10)
- RE: Defeating Citibank Virtual Keyboard protection using screenshot method James C. Slora Jr. (May 11)
- Message not available