> striptease captcha malware: > http://blog.trendmicro.com/captcha-wish-your-girlfriend-was-hot-like-me/
Funny. :) Not new, as everyone's pointed out, but still funny! And clever. I've also heard (unverifiably) of web sites that offer access to dirty pictures in exchange for CAPTCHA decoding; similar concept. This line from the weblog entry is questionably: > However, the ?answers? are then sent to a remote server, where a malicious user eagerly awaits them. It's presumably an automated account-creation program, not a human user (as this sentence says, and the picture at the top shows) who is awaiting the results. If it was "a malicious user" sitting in front of a keyboard, he could decode the CAPTCHA himself. The general concept is pretty brilliant: if a problem is too hard for an automated program to solve, outsource it to humans! :) DC
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
