Keyboard Logger

DEFINITION of 'Keyboard Logger'

Hardware or software that records every keystroke on a computer, usually for nefarious purposes and without the user’s knowledge. Keyboard loggers can be used to collect all kinds of sensitive information, including personally identifiable information (PII), passwords, intellectual property, and trade secrets. They can also be used to record email messages, online chats, usernames and passwords.

While keyboard loggers are often used for criminal purposes, companies may use keyboard loggers for legitimate IT purposes, such as trying to prevent sensitive company information from being leaked.

Also called a keylogger or keystroke logger.

BREAKING DOWN 'Keyboard Logger'

A hardware keylogger can be a barely noticeable device that connects the hard drive’s USB port to the keyboard’s USB cord. This type of keyboard logger was used to commit a serious crime in 2013. A county sheriff installed a keylogger on his ex-wife’s work computer because he wanted to capture her information. If he got caught – and he did – his action would have been a problem regardless of where she worked, but since she worked for the state supreme court, he was found guilty of a federal wiretapping charge.

Another example of a hard-to-detect keyboard logger came out in 2014. KeySweeper is a $10 device that looks like a typical USB phone charger but can pick up keystrokes from the radio signals transmitted by wireless Microsoft keyboards and transmit that data via cellular network. The logger doesn’t interact with the computer itself, making it difficult to detect. A wireless keyboard would have to encrypt the data transmitted between itself and the computer to prevent this type of sniffing attack. A keyboard that uses the Advanced Encryption Standard (AES) would be protected against this type of threat. While AES keyboards are not foolproof, they help deter data theft by using firmware that blocks access to the keyboard’s secret encryption key as well as random data generators and unique transmission identifiers.

Windows 10 has a feature that some news outlets have erroneously reported as a keylogger. It’s a setting that is enabled by default but that users can turn off in their privacy settings. It says “Send Microsoft info about how I write to help us improve typing and writing in the future.” Further in the “speech, inking, & typing” section of Windows 10’s privacy settings, there is an option to allow or disallow Windows and Cortana to “get to know your voice and writing to make better suggestions for you,” which includes collecting your typing history. Microsoft says these features are used to improve consumers’ experience with using Windows. It is not designed to collect personal information or to use it for malicious purposes but to improve product development. Microsoft uses safeguards to protect users’ information collected through these means.

That being said, accidental disclosure of collected information is possible, and users who are concerned can easily opt out. Nefarious keyboard loggers do not tell users about their existence or allow them to opt out.