Illegitimate screenshots?

-2

1

Our bank requires us to run Trusteer Rapport: http://www.bbt.com/bbtdotcom/business/online-services/online-banking/trusteer-rapport-online-fraud-protection-software.page

On two different computers, it has reported screenshots. On one computer, it reported msoutlook.exe was trying to take a screenshot. On another, it reported that msaccess.exe, internetexplorer.exe, explorer.exe were all trying to take screenshots. What is going on with this? Big brother? Is this even possible? or are these just false positives?

Freeman Helmuth

Posted 2015-05-05T15:13:26.467

Reputation: 3

1All of those sounds like false positives. It sounds like you should get get a better bank that doesn't force you to run broken software. – Ramhound – 2015-05-05T15:25:58.703

I know it does. The problem is BB&T is HUGE! And very secure with everything they do. We literally can't pay our employees through their system without this software. And I have a really hard time believing that MS would do this. The odd thing is it's only ms software – Freeman Helmuth – 2015-05-05T15:27:53.647

So report the false positives and move on. – Ramhound – 2015-05-05T15:29:28.447

Answers

0

Yes it's possible. All the MS Office products have a feature that allow you to insert screenshots, screen clippings, etc. directly from within the application. It would be a shared library function. That said, it's not unreasonable to think that malware might be exploiting this function, but I'm sure there are better ways to go about it. https://support.office.com/en-au/article/Insert-a-screenshot-or-screen-clipping-6d7e6041-140c-4476-8432-ebeaee8a44e6

Are you sure this isn't a legitimate use case? The person at that station might actually be using that feature.

If you're concerned with screenshots being taken, you can simply disable print screens via GPO for anyone that's not an admin.

Alex Atkinson

Posted 2015-05-05T15:13:26.467

Reputation: 2 845

Asked: 2015-05-05T15:13:26.467

Viewed: 89 times

Active: 2015-05-05T16:38:32.587