Collaborate Disseminate
There are multiple complaints about the computational load put on internet servers by AI web crawlers.
Much of the web is behind a CAPTCHA, from dark web marketplaces to the Council of Europe such that my use of the web is significantly sl… Continue reading How effective are captchas against AI web scrapers?
A security researcher has discovered that the websites of over 100 car dealerships have been compromised in a supply-chain attack that attempted to infect the PCs of internet visitors.
Read more in my article on the Hot for Security blog. Continue reading Supply-chain CAPTCHA attack hits over 100 car dealerships
I am integrating Cloudflare Turnstile into my website, and there is an optional POST parameter remoteip, which can be sent from the server to Cloudflare. reCAPTCHA has the same parameter as mentioned in Is there any reason to include the r… Continue reading Is there any issue with binding the client’s IP address to a reCAPTCHA/Turnstile token?
Good news this week from the Sun’s far side as the Parker Solar Probe checked in after its speedrun through our star’s corona. Parker became the fastest human-made object ever …read more Continue reading Hackaday Links: January 5, 2025
We all know that “Can it run Doom?” is the first question of a hardware hacker. The 1993 first person shooter from id Software defined an entire genre of games, …read more Continue reading Is There Nothing DOOM Can’t Do?
This week, we delve into the dark world of fake CAPTCHAs designed to hijack your computer. Plus, the AI safety clock is ticking down – is doomsday closer than we think? And to top it off, we uncover the sticky situation of Krispy Kreme facing a ransomw… Continue reading Smashing Security podcast #398: Fake CAPTCHAs, Harmageddon, and Krispy Kreme
Malicious CAPTCHA distributed through ad networks delivers the Amadey Trojan or the Lumma stealer, which pilfers data from browsers, password managers, and crypto wallets. Continue reading Lumma/Amadey: fake CAPTCHAs want to know if you’re human
Lumma Stealer malware uses fake CAPTCHA to deceive victims. This information-stealing malware targets sensitive data like passwords and… Continue reading Fake CAPTCHA Pages Used by Lumma Stealer to Spread Fileless Malware
There was movement in the “AM Radio in Every Vehicle Act” last week, with the bill advancing out of the US House of Representatives Energy and Commerce Committee and heading …read more Continue reading Hackaday Links: September 29, 2024
Many GitHub users this week received a novel phishing email warning of critical security holes in their code. Those who clicked the link for details were asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware. While it’s unlikely that many programmers fell for this scam, it’s notable because less targeted versions of it are likely to be far more successful against the average Windows user. Continue reading This Windows PowerShell Phish Has Scary Potential