Latest Threat Research: LetMeowIn – Analysis of a Credential Dumper

Get Informed


MantisTek GK2 Keyboard Sends Data to China

The Mantistek GK2 gaming keyboard is a popular keyboard in the gaming community however, it has been seen that the keyboard has been silently recording key strokes and sending them to a server that is maintained by the Alibaba Group.

The Alibaba Group is a Chinese e-commerce company that provides consumer to consumer, business to consumer, and business to business sales via web portals.

The keylogger was first noticed when a few users who own the keyboard went to an online forum to share the issue. According to Tom’s Hardware “MantisTek keyboards utilise ‘Cloud Driver’ software, maybe for collecting analytic information, but has been caught sending sensitive information to servers tied to Alibaba.”

After further research it has shown that the information that’s being collected can be sent to a user that is using the Alibaba service.

Users are recommended to stop using the keyboard, make sure that the MantisTek cloud driver software is not running in the background, and block the “CMS.exe” executable in your firewall.