[Poohbah]

No, the entire password input box contains a value, such as "t4@!dd_KqZ$h" (if the user has a strong password) or "password" (if the user is an idiot). That value is passed into the PGP program through a standard Windows Foundation Class library function call. It sounds like the Magic Lantern software grabs that value and copies it to its own buffer. Keystroke logging takes entirely too much memory--suppose it was a guy composing an opus which would take ten pages to print out before hitting "ENCRYPT." Also, the cut-paste would be an easy dodge--so the FBI would look for a way around it before anyone else would think of it.

[Nita Nupress]

Thanks.

[oc-flyfish]

Yes, you are probably right. Also, they can "hide" the program so it doesn't show up under task manager so you don't know that it is running.

As for AV software... if they were in bed with the FBI then they wouldn't make it part of their pattern files.