It could just be sending back the coordinates where it was clicked, but that seems fairly easy to decipher, too. It does sound like the basic motivation is dealing with infections on the client computer.
Yes, this would be quite effective against a basic keylogger looking for 000-00-0000 formatted strings. Most identity theft isn't targeted, it's just looking for you to type 16 digits in a row that pass luhn, or say in this example a 9 digit number that meets the specs for a social security number. This could likely be determined based on context, such as also seeing MM-DD-YYYY patterns and street addresses.
Comments 3
Reply
Reply
Reply
Leave a comment