To evade detection, hackers are requiring targets to complete CAPTCHAs

Microsoft spotted an attack group distributing a malicious Excel document on a site requiring users to complete a CAPTCHA. The Excel file contains macros that, when enabled, install GraceWire, a trojan that steals sensitive information. The attacks are the work of a group Microsoft calls Chimborazo, which company researchers have been tracking since at least January. The group is now using websites with CAPTCHAs to thwart automated analysis defenders use to detect and block attacks and get attack campaigns shut down.”]

Source: https://arstechnica.com/information-technology/2020/06/to-evade-detection-hackers-are-requiring-targets-to-complete-captchas/

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text