1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Sneaky malware abuses Captcha to bypass browser protections

    From TechnologyDaily@1337:1/100 to All on Wed Aug 18 17:45:03 2021
    Sneaky malware abuses Captcha to bypass browser protections

    Date:
    Wed, 18 Aug 2021 16:32:17 +0000

    Description:
    Malware authors are abusing the trust users place in Captcha challenges.

    FULL STORY ======================================================================

    Cybersecurity experts have shared details about a novel malware campaign
    that bypasses browser warnings by tricking users into complying with a fake Captcha challenge.

    The security researchers known as the MalwareHunterTeam provided BleepingComputer with a suspicious-looking URL, which takes victims to a webpage that includes an embedded YouTube video.

    As soon as the victims hit the Play button, the webpage downloads an executable named console-play.exe, which it camouflages behind a fake Captcha challenge. TechRadar needs you!

    We're looking at how our readers use VPNs with streaming sites like Netflix
    so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.

    Click here to start the survey in a new window << Here's our choice of the best malware removal software on the market These are the best ransomware protection tools Protect your devices with these best antivirus software

    Decoding the trickery, BleepingComputer reveals that the fake captcha gets
    the victims to press the right keys to overrule the browsers suspicions about the executable file, enabling the malicious file to download the malware onto the computer. Captcha trickery

    Since the file that the Play button asks the browser to download is an executable, virtually all modern web browsers will display a prompt asking
    the users to confirm the action.

    To bypass this warning, the scam brings up the fake captcha challenge, which prompts the user to enter a series of keys. Embedded within the list of keys to be pressed is the Tab key and the Enter key.

    The Tab key will change the focus of the browsers prompt to ignore the warning, and the Enter key will confirm the choice and download the file.

    Once the malicious executable is on your computer it will jump through hoops before downloading the Gozi/Ursnif banking trojan , which will then get to
    its nefarious purposes and steal account credentials and further infect the computer by pulling in more malware.

    Notably, this is the second scam in as many weeks that has capitalized on internet users trust in Captcha challenges to manipulate victims. We've put together a list of the best endpoint protection software

    Via BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/sneaky-malware-abuses-captcha-to-bypass-browser -protections/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)