loader gif

Pakistani Government Site Compromised, Logs Visitor Keystrokes

Pakistani Government Site Compromised, Logs Visitor Keystrokes (Breaches and Incidents)

A Pakistani government site used as a tracking platform for passport applications has been compromised to deliver a ScanBox framework payload which captures the visitors' machine information and logs their keystrokes. As previously detailed by AlienVault's researchers in two in-depth examinations of the reconnaissance tool published during 2014 and 2015, the ScanBox framework is a self-contained JavaScript-based keylogger designed to record users' keystrokes while they're browsing a website. What's even more interesting is that for the keylogging functionality to be functional, the attackers don't have to drop any malware on their victims' computers, the only requirement being the JavaScript code to be executed by the visitor's web browser.

loader gif