Interesting Article on Captchas and Malware


C

csun

Well-known member
Member
Local time
11:15 AM
Posts
140
OS
Win11 Ver 24H2 26100.2033
I have always been leery and annoyed by Captchas. As the article states most savvy users would not complete the verification steps but the article does highlight the lengths hackers will employ. (excerpts)


If you follow the steps, the website copies a text string to your Windows clipboard. Normally, you'd have to grant your permission for such an action, but you already did so by checking a checkbox on the first screen of the CAPTCHA prompt.

As seen in the Windows Run text field, the string says simply: "I'm not a robot -- reCAPTCHA Verification ID: 8253." But behind the scenes is another string, one that runs a Windows command called Mshta.exe. Normally, this file is a legitimate and safe command used to execute code, but hackers and scammers can easily exploit it to download and install malware.

www.zdnet.com

That weird CAPTCHA could be a malware trap - here's how to protect yourself

Follow the 'I'm not a robot' CAPTCHA, and you might just end up with malware on your PC.
www.zdnet.com www.zdnet.com
 

My Computer

System One

  • OS
    Win11 Ver 24H2 26100.2033
    Computer type
    Laptop
    Manufacturer/Model
    Dell
    CPU
    Intel i5
    Memory
    8gb
    Screen Resolution
    1920x1080
    Hard Drives
    256gb
    Browser
    Firefox
    Antivirus
    Windows Defender
CAPTCHAs are typically a good thing; however, anything for good is often a method to be exploited or altered for a bad outcome. As innovated as the good guys are the bad guys are equally innovative and have a surplus of something the good guys don't: time. In my career I've seen some pretty crazy and innovative TTP (tactics, techniques and procedures) threat actors have used to reach their goals.

I've done a number of POC's for some interesting things :)

I created a rudimentary file transfer protocol that entirely used just ping commands, or stored "malware" (fake) as event logs in the windows event view.
 

My Computer

System One

  • OS
    Windows 11
Now and then I indeed have to solve those little puzzles, where you have to click images that do correspond (or not) as captcha. Mostly at download sites, but even Google would ask me if I am a human, when I do a repeated search for something. So it'is very good to know, that a trick exists that tries to install malware.

I did not yet see any fake captchas like this, probably because I dont download illegal stuff, but you never know.

So @csun : thanks for the information! (y)
 

My Computer

System One

  • OS
    Windows 11 Pro 23H2 22631.4890
    Computer type
    PC/Desktop
    Manufacturer/Model
    Build by vendor to my specs
    CPU
    AMD Ryzen 7 5700G
    Motherboard
    MSI PRO B550M-P Gen3
    Memory
    Kingston FURY Beast 2x16GB DIMM DDR4 2666 CL16
    Graphics Card(s)
    MSI GeForce GT 730 2GB LP V1
    Sound Card
    Creative Sound Blaster Audigy FX
    Monitor(s) Displays
    Samsung S24E450F 24"
    Screen Resolution
    1920 x 1080
    Hard Drives
    1. SSD Crucial P5 Plus 500GB PCIe M.2
    2. SSD-SATA Crucial MX500-2TB
    PSU
    Corsair CV650W
    Case
    Cooler Master Silencio S400
    Cooling
    Cooler Master Hyper H412R with Be Quiet Pure Wings 2 PWM BL038 fan
    Keyboard
    Cherry Stream (wired, scissor keys)
    Mouse
    Asus WT465 (wireless)
    Internet Speed
    70 Mbps down / 80 Mbps up
    Browser
    Firefox 130.0
    Antivirus
    F-secure via Internet provider
    Other Info
    Router: FRITZBox 7490
    Oracle VirtualBox 7 for testing software on Win 10 or 11
You must log in or register to reply here.

Latest Support Threads

Latest Tutorials

Back
Top Bottom