National KE-CIRT/CC Cybersecurity Best Practice Guide of the Week

 

PASSWORD STEALERS

 

In This Issue:

   Password stealers

 

 

 

 

 

 

 

 

 

 

 

 

 

A password stealer is a program that collects chunks of data likely to be account names and their associated passwords so that an attacker can use those credentials to pose as the victim.

It is a type of computer virus that infects your machine, records all of your user passwords and then emails them to a remote user. They gain access to your computer from infected hard drives and clicking on malicious software.

This is a dangerous type of virus because it can compromise your email and bank accounts. It can steal passwords from programs like Windows, Internet Explorer, your email and other types software. The password stealer program may start up automatically every time Windows loads, so rebooting the computer after you remove the threat is essential.

HOW TO PROTECT YOURSELF FROM PASSWORD STEALERS

Update your Operating System (OS) and other software frequently, if not automatically. This keeps hackers from accessing your computer through vulnerabilities in outdated programs.

 Do not use open Wi-Fi; it makes it too easy for hackers to steal your connection and download illegal files.

Protect your personal Wi-Fi with an encrypted password, and consider refreshing your equipment every few years.

Watch what you click!

Do not access any removable drives without scanning them first.

If you believe you might have revealed sensitive information about your organization, report it to the appropriate people within the organization, including network administrators. They can be alert for any suspicious or unusual activity.

Have the above security tips in mind when operating your computer systems. Report any cybercrime incident/activity

to  incidents@ke-cirt.go.ke. / www.ke-cirt.go.ke