A recent email circulated around the world holding a virus contained within a PowerPoint attachment has caused havoc in many businesses. Disguised in the form of a trusted email source it has the capability to completely shut down and collate all confidential information held on a user’s computer in seconds through ‘keylogging’ software. The PowerPoint virus installs a ‘keylogger’ that records everything typed on an infected machine known as keystrokes - anything that is typed using the keyboard in any application, program or web browser. Its severity has prompted Microsoft and Norton to issue warning statements to customers. So how can SMEs in the midlands protect themselves and their data in the event of an employee potentially opening an attachment of this kind?

There are two very simple practices that SMEs can adopt to reduce the impact of Keylogging viruses, which primarily look to steal passwords.

The first practice uses an application in-built in Windows that is not widely known about. A virtual keyboard can be used to input passwords or sensitive data overcoming the need for a physical keyboard and its associated key-logging exposure. Using the virtual keyboard will help prevent the virus from locating any passwords, bank card or confidential details through a keylogging system. By simply clicking on the Start menu then Run, type in OSK and pressing Return brings up the virtual keyboard on-screen.

Attackers can only work with the information they retrieve. If you don’t give them anything to use there is little they can do to expose you through this medium.

A second good practice retains the use of the physical keyboard but involves typing the letters of a password into a line of random text. This hides the actual password and is what will be stored on keylogger records. Using the shift key and the mouse to then highlight and take out the letters that aren’t needed in a password provides the safeguard as the key-logger only logs what is typed and nothing else. Using this process actually means the user types the wrong password (picked up by the key-logger) and then deletes surplus letters before confirming their password/data. If an attacker does glean information inputted then it is the wrong info and they will soon find out before moving onto their next victim.

In conclusion it is worthwhile not to open up any unscheduled PowerPoint attachments – even if they are from a trusted source. If users have to, they should adopt one of the above practices for protection.

If you require any more information on email security please contact our Sales Team on 0121 248 7931.

2008.12.18 (AH)