Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Question

Can keylogger encryption programs capture data 4 hackers?

Feb 15, 2015 8:14AM PST

I have a keylogger protection program, that I've liked. However, the corporate IT people I work with are skeptical. Their question is: How do you know that the anti keylogging program, while encrypting your keystrokes, isn't also capturing and making that data available to hackers who might have designed it?

Is that something that Download.cnet.com would detect when reviewing it and before posting it up?

Discussion is locked

- Collapse -
Answer
We didn't use such at the office.
Feb 15, 2015 11:45PM PST

I won't enter into a debate here but will share the office IT did use a hardware keylogger which was without issues of the software keyloggers. Here's an example source. https://www.google.com/search?hl=en&as_q=hardware+keylogger

No encrypting keylogger appears to get around that solution. Most IT won't reveal this solution.
Bob

- Collapse -
Can keylogger encryption programs capture data 4 hackers?
Feb 24, 2015 12:19AM PST

Thanks for the response. Not looking for a debate. Just insights.

I'm not sure what your answer means, however. You're pointing to a piece of keylogger hardware.

I'm asking about whether a piece of "anti" keylogger software might be used by the designer to deliver or send IDs and passwords to someone.

Obviously, I'm trying to be cautious and somewhat skeptical. I like the idea of the anti-keylogger software, that encrypts your keystrokes as you send them out. And have been using it.

However, my IT crew at work is leary of it. So, wanted to ask the CNET experts. It's one of the leading key scrambling/encrypting softwares you offer via Download.com. Not sure if those get tested by CNET before they are put out there.

Thanks in advance for your thoughts on this.

- Collapse -
The device I noted won't be stopped by anti key loggers.
Feb 24, 2015 12:35AM PST

But here's the deal. When you are on a web site typing in your password, you send that over a pre-scribed protocol. As such those packets are still in a known encryption and well, that's the end of it, isn't it?

All your anti this or that is only creating some smoke and mirrors on your local machine and doesn't tackle the rest of the problem at all.

That is, look at the big data breaches to date. Key loggers didn't play a role.
Bob

- Collapse -
Kind of scary
Feb 24, 2015 12:41PM PST

Great answer. Thanks for the reply.

So it sounds like these anti keylogger/ encrypting programs are just fluff, which makes me wonder what they are really designed to do. Kind of scary.

Thanking you.