To evade detection, hackers are requiring targets to complete CAPTCHAs | Ars Technica
https://arstechnica.com/information-technology/2020/06/to-evade-detection-hackers-are-requiring-targets-to-complete-captchas/

Recently, "CAPTCHAs" often appears on sites that SG people often go to.👀
However, the access destination is not Google.
In case of another content server, I'm worried.

I have no intention of telling you which site has the problem.
This is because it is important to use it carefully on any site.

Are there any good measures?
Someone will be happy if you leave it in the comments.


Memo
Malwarebytes Cybersecurity for Home and Business | Malwarebytes
https://www.malwarebytes.com/
VirusTotal
https://www.virustotal.com/gui/home


by the way GA? Lv0 1found. 7/17-18 End

3 years ago

Comment has been collapsed.

Are you scanning for malware or viruses?

View Results
Yes! & Clean
Yes! & Found XD
No :p
Other(Comment)
If there is 🥒, it will be solved.("GA":LzMBB)

Am I missing something, I don't see why this is a big deal. From what I can tell, they are just using the captcha to keep bots off the site so they can't automatically detect the malware. I don't think there is anything wrong with the captcha itself and I don't think this is infecting popular sites that we use. Is there more to this story that I am not understanding?

You have to fall for the fishing email, click the malicious link, fill out the captcha, and then download a file? It sounds like the same thing they have always done, but they now just add a captcha to keep the antimalware bots from automatically checking and flagging the malicious site.

3 years ago*
Permalink

Comment has been collapsed.

For example...

It's easy to understand for those who often use general script blocking such as Noscript.
Normally, the real "reCAPCHA" uses Google's API, so the script is read from there.
However, there seems to be a place where can use "reCAPCHA" of "fake" from a completely unrelated content server.
If you check the content server, it will be detected if there is a problem.👀...
In any case, if you see "unfamiliar things" on your favorite site, you should suspect.

3 years ago
Permalink

Comment has been collapsed.

Can you clarify what the problem with the captcha is in your eyes? Because that doesn't seem to match the link you posted.

The link you posted merely states captcha's are used to stop automated malware-seeking scripts. The captcha's aren't doing anything bad to the users.The problem here is that automated scripts used to find malware and then automatically report and block the malware won't spot this new type due to the captcha.

Quite frankly the danger for a visitor of a malware with a captcha in front is the same as one without a captcha. The only difference is the one with a captcha won't be spotted, taken down by the provider or incorporated in anti-virus suites as fast as usual.

3 years ago
Permalink

Comment has been collapsed.

Probably a translation device problem.

What I can say is that there are unsafe sites on our side.
There is no particular intention beyond recommending a security scan of the computer.(人Θ'o)

3 years ago
Permalink

Comment has been collapsed.

Don't know what language you're translating it to, but it might be translation problem then :)
I read the English article and it had the same info I read a month ago on various sites:

Captcha's are a method to stop automated scans from finding the malware.
Annoying, potentially dangerous because they fly under the radar longer, but nothing really special.
There's been worse threats to online safety that have a lot more impact in website visitors in general.

That being said: Good you are trying to warn people to stay safe. Thanks for doing that. 👍

Scanning your computer regularly is always a good thing to do. As is using an addblocker on most sites that you don't explicitly trust or for example making sure to always check where a link really goes to before you click it. (cause that's not always where you think.)

3 years ago
Permalink

Comment has been collapsed.

Well this is a great move. Since whenever I encounter a ReCapatcha I swarm out screaming "fuck this site!", if all phishers start doing this, I'll be protected without even paying attention to where I go :D

3 years ago
Permalink

Comment has been collapsed.

Doesnt seem to be a big deal, but it's been awhile since i scanned with MWB so thanks for the reminder.

3 years ago
Permalink

Comment has been collapsed.

I'm due for a scan soon. Thanks for the giveaway and the reminder!

3 years ago
Permalink

Comment has been collapsed.

Twitter Hack: Elon Musk, Bill Gates, Biden Hit in Bitcoin Attack - Bloomberg
https://www.bloomberg.com/news/articles/2020-07-15/elon-musk-bill-gates-appear-to-have-twitter-accounts-hacked

┐(´Θ`)┌ Rumors...
I'm scared these days.
It's a coincidental timing.
By the way, bitcucumbers have not been transferred.
why? !! 。゚(。pΘq。)゚。👮💻        😺🥒💰🐶

Joking aside
Be careful of the pollution of your computer.d(-Θ-。)☣💻☣

3 years ago
Permalink

Comment has been collapsed.

wouldn't you need to have excel installed, and more, open the file with the macro for this to work?

3 years ago
Permalink

Comment has been collapsed.

ミ🛸 🌕

Recently, I found a suspicious sign, so I record it and report it to the appropriate place.

GA ends in about 3 hours.⏳
I hope that everyone will be alert.💻ヽ(Θ´; )ノ≡ヽ( ;`Θ)ノ🎮

3 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 3 years ago.

3 years ago
Permalink

Comment has been collapsed.

You may feel okay as you have not installed anything.
You might think so, but probably bad.

When you travel around the internet.

The devil is lurking in all displayed.👿

And the devil may be lurking in your computer.🔥💻🔥 。゚(。pΘq。)゚。

Remember that sometimes a PC needs maintenance.🩺💻🪛d(-Θ-。)

3 years ago
Permalink

Comment has been collapsed.

Deleted

This comment was deleted 3 years ago.

3 years ago*
Permalink

Comment has been collapsed.

Closed 3 years ago by Kappaking.