As I pointed out at the meeting, basic Captchas don't cut it anymore.
See here for details of how Yahoo and Hotmail got hacked recently... the
inference (note that it is only an inference) is that the CAPTCHAs have
been cracked.
http://tech.blorge.com/Structure:%20/2007/07/08/spammers-overcome-hotmail-and-yahoo-captcha-systems/
I recently attended an industry security briefing where the players
mentioned they were developing OCR abilities in order to stop spyware.
Anyone reminded of how this looks like mice on wheels?
Brett.
Zane Gilmore wrote:
Steve Holdoway wrote:
<snip>
This is a bit sideways, but... I run a phpbb2 bulletin board, and the
default captcha was quickly decoded and I was plagued by bots dumping
pr0n into the forums - not overly proffessional. I installed the
Anti-Spam ACP mod (
http://www.phpbb.com/community/viewtopic.php?t=465600 ), and just
happened to check the logs for that last night ( yup, while you were
enjoying yourselves! ). I've had one spam to the bb since
installation in April this year, and over 13,500 attempts have failed
- mostly because they can't read the captcha. So if you want an
industrial grade method and set of images, then I'd look at what that
offers.
Hmm, I didn't know that captcha parsing technology was getting so good.
I will bear this in mind in the future.
My $0.02, and I'm sure I've started a flame war (:
Shouldn't think so, you were very balanced I thought
:-)
Regards,
Zane
--
Brett Davidson
Systems Engineer
--
Net24 Limited
Web: www.net24.co.nz
Phone: 0800 5000 24 | DDI: +64 3 962 9518
--
// web hosting / email hosting / data backup
// our reputation for reliability precedes us
This transmission is for the intended addressee only and is confidential
information. If you have received this transmission in error, please
delete it and notify the sender.
