1. 47

  2. 26

    There is no evidence that this keylogger has been intentionally implemented.

    Oh, that’s alright then. I’m sure we all have accidentally implemented a keylogger in the throes of writing an audio driver. It must happen all the time. Nothing to worry about.

    1. 8

      Actually, I see this. They were having an issue reading the media keys on the keyboard. So they started capturing all keyboard events to a logfile for debugging purposes. It was one of those, “let me throw this in to test, and debug the problem,” and the dev forgot they did it and then committed the code.

      Nobody did a detailed code review, and voila…

      1. 1

        Wait why is the audio driver involved here? Shouldn’t this be the keyboard driver and some other mechanism change audio settings driver-agnostic?

        1. 5

          Yes obviously. But this actually has a rich history on Windows, e.g. also graphics drivers, wireless drivers. They don’t just install the 300 kB driver and firmware, no they include a 300MB (back in the day, must be larger now…) crap package that replaces how you configure your graphics card, display, or wireless driver with a fugly “80s futuristic design” control panel.

        2. 1

          I don’t want to program with that guy.

        3. 2

          Well I have seen instances of programmers implementing home/root directory deleter while they were trying to make something else so this doesn’t seem entirely implausible.

        4. 6

          With a tag line like ‘key logger’ - I’d have expected to see malware actually transmitting said keystrokes somewhere, rather than logging them to a file on the hard drive.

          1. 16

            …it literally logs keystrokes, but you feel that the moniker “key logger” is misleading?

            1. 2

              Beg pardon. I am not an expert, I’m just used to seeing keys being logged and transmitted somewhere. However you’re right, it is what it says on the tin, a ‘key logger’ and nothing more.

            2. 10

              Just wait for the Ars writeup calling it a sophisticated nation state backdoor.

              But it is fairly serious. Drive by file read vulns in browsers aren’t unheard of. Not to mention all the other ways files leave computers, like dropbox or whatever. For anyone who gets ahold of your computer, whether cops or crooks, all the passwords you didn’t trust the browser to save would be of particular interest.