Kaspersky Application Control - KIS 2017 bug?

  • Thread starter Deleted member 2913
  • Start date
Status
Not open for further replies.
D

Deleted member 2913

Thread author
harlan4096 said:
As I said before "Secure Data Input" protects against data by keyloggers in supported browsers and always if "Inject Script" is enabled.

Secure Data Input in Kaspersky Total Security 2016
Click to expand...
So, to be clear, keystroke are encrypted without the use of Virtual Keyboard too in IE, FF & Chrome if "Inject Script" is enabled, right?

Can keystroke encryption in browsers be tested with Zemana or Spyshelter tools?
 
  • Like
Reactions: aragornnnn, Venustus and harlan4096
shmu26

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
harlan4096 said:
I still haven't do it, if You want, try and let us know :)
Click to expand...
okay, so if I understand right, secure data input has two parts:
1) on-screen keyboard
2) secure keyboard input.

number 2 is keystroke encryption, and it works even if you don't use the on-screen keyboard (but only on supported browsers, and only if "inject script" is enabled).

Please correct me if I am wrong.
 
  • Like
Reactions: aragornnnn, Venustus, Deleted member 2913 and 1 other person
Venustus

Venustus

Level 59
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Dec 30, 2012
4,809
shmu26 said:
okay, so if I understand right, secure data input has two parts:
1) on-screen keyboard
2) secure keyboard input.

number 2 is keystroke encryption, and it works even if you don't use the on-screen keyboard (but only on supported browsers, and only if "inject script" is enabled).

Please correct me if I am wrong.
Click to expand...
From the Kaspersky manual:


When using the Internet, you frequently need to enter your personal data or your user name and password. This happens, for example, during account registration on websites, online shopping, and Internet banking.

There is a risk that personal data can be intercepted by hardware keyboard interceptors or keyloggers, which are programs that record keystrokes. The On-Screen Keyboard tool prevents the interception of data entered via the keyboard.

Many programs classified as spyware can take screenshots, which then are automatically transmitted to an intruder for further analysis to steal the user's personal data. On-Screen Keyboard protects entered personal data from attempts to intercept it by means of screenshots.
About On-Screen Keyboard

Protecting data entered on the computer keyboard
Protection of data input on the computer keyboard allows avoiding interception of data that is entered via the keyboard.

Secure Keyboard Input has the following limitations:

  • Secure Keyboard Input is available only for the Microsoft Internet Explorer, Mozilla Firefox, and Google Chrome browsers. When using other browsers, data entered via the computer keyboard is not protected from interception.
  • Secure Keyboard Input is not available in Microsoft Internet Explorer from Windows Store.
  • Protection of data input from the computer keyboard cannot protect your personal data if a website that requires entering such data has been hacked, because in this case information is obtained by intruders directly from the website.
Click to expand...

Protecting data entered on the computer keyboard
Click to expand...
 
Last edited:
  • Like
Reactions: aragornnnn, frogboy, harlan4096 and 2 others
Tony Cole

Tony Cole

Level 27
Verified
May 11, 2014
1,639
How comes the same issues pop up year after year, just like Bitdefender? As for Application Control Cruelsister showed that even untrusted is useless against zero-day malware, no boot-time protection etc., very poor.
 
  • Like
Reactions: aragornnnn
shmu26

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
Tony Cole said:
How comes the same issues pop up year after year, just like Bitdefender? As for Application Control Cruelsister showed that even untrusted is useless against zero-day malware, no boot-time protection etc., very poor.
Click to expand...
if you want to get a high level of protection from Kaspersky, you need to enable Trusted Applications Mode. You are right that Application Control alone is not enough.
But if you enable TAM, you will get default/deny + very strict monitoring of dll files. Try it and see.
 
  • Like
Reactions: aragornnnn, Deleted member 2913, XhenEd and 2 others
harlan4096

harlan4096

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Apr 28, 2015
8,754
I would add disabling "Trusting in Digital Signature Applications"... also We don't know much about the CS malware used to bypass Kaspersky protection in that video (probably digitally signed ?)...

Make some tweaks (changing defaults settings) in Kaspersky can improve a lot the prevention...
 
  • Like
Reactions: aragornnnn, Deleted member 2913, XhenEd and 2 others
shmu26

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
harlan4096 said:
I would add disabling "Trusting in Digital Signature Applications"... also We don't know much about the CS malware used to bypass Kaspersky protection in that video (probably digitally signed ?)...

Make some tweaks (changing defaults settings) in Kaspersky can improve a lot the prevention...
Click to expand...
does it help to put heuristics at high? Or maybe it's not worth the trouble?
 
  • Like
Reactions: aragornnnn, Deleted member 2913 and harlan4096
harlan4096

harlan4096

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Apr 28, 2015
8,754
It seems this year will not be MR1 for K2017, in fact K2018 public beta testing is already running (usually would be in March of 2017).

About notification/alerts in W10, the problem is that They (KL) just follow Microsoft new W10 mode, although still there are some warnings/notifications that are as always: malware detections, Application Control warnings in Interactive Mode, etc.
 
  • Like
Reactions: aragornnnn, Deleted member 2913, XhenEd and 3 others
Venustus

Venustus

Level 59
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Dec 30, 2012
4,809
harlan4096 said:
It seems this year will not be MR1 for K2017, in fact K2018 public beta testing is already running (usually would be in March of 2017).

About notification/alerts in W10, the problem is that They (KL) just follow Microsoft new W10 mode, although still there are some warnings/notifications that are as always: malware detections, Application Control warnings in Interactive Mode, etc.
Click to expand...
Thanks!!:)
 
  • Like
Reactions: aragornnnn and Deleted member 2913
shmu26

shmu26

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Jul 3, 2015
8,153
I am giving TAM another try, this time with interactive mode, to prevent KSN from deleting my rules. It works. I have a spotty KSN connection, so every time it succeeded in connecting, it set many things back to default, which was very frustrating. But no more!

With interactive, there are a lot of prompts at the beginning, but if you move your known and trusted programs to trusted category, it quiets down pretty quick.
 
  • Like
Reactions: aragornnnn, Deleted member 2913, XhenEd and 2 others
harlan4096

harlan4096

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Apr 28, 2015
8,754
That is how I always work in my systems with KIS/KTS (Interactive Mode + TAM + some tweaks in Application Control).

I think the issue You had with rules in Auto Mode was reported by some others users in KL forum, and not sure whether somebody said that it was by design (I have to find the thread there and check again), but in Interactive Mode You have the control.
 
  • Like
Reactions: aragornnnn, Deleted member 2913, XhenEd and 2 others
Venustus

Venustus

Level 59
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Dec 30, 2012
4,809
harlan4096 said:
That is how I always work in my systems with KIS/KTS (Interactive Mode + TAM + some tweaks in Application Control).

I think the issue You had with rules in Auto Mode was reported by some others users in KL forum, and not sure whether somebody said that it was by design (I have to find the thread there and check again), but in Interactive Mode You have the control.
Click to expand...
Are they personal tweaks or tweaks that most users may benefit from?
 
  • Like
Reactions: aragornnnn, Deleted member 2913, XhenEd and 2 others
Status
Not open for further replies.

Similar threads

Mystic
    • Like
Advice Request Kaspersky Application Control weird behaviour.
Replies
11
Views
1,248
Kaspersky
Mystic
Mystic
Gandalf_The_Grey
    • +Reputation
    • Like
    • Applause
Intel releases new Wi-Fi driver with fixes for BSOD, yellow exclamation mark, and more
Replies
1
Views
578
System utilities
Can't Decide
C
Guilhermesene
    • Like
    • Applause
Hot Take [Tutorial] Update Kaspersky when starting the system automatically
Replies
9
Views
927
Kaspersky
Jonny Quest
Jonny Quest

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top