Spammers employ humans to break email tests
By Matthew Sparkes
Posted on 9 Apr 2008 at 10:39
Spammers are employing human workers to sign up for thousands of free email accounts from which to distribute phishing emails, claims a new report.
The report, from TrendLabs, claims workers in India are being used to solve the CAPTCHA tests (Completely Automated Public Turing test to tell Computers and Humans Apart) during registration for free online email accounts. At least one large supplier of free accounts has been heavily targeted, claims the company.
Although there are existing algorithms that allow computers to solve the tests around a third of the time, human workers can approach 100% accuracy.
"The cybercrime industry is no longer the reserve of individuals, but that of organised gangs with large amounts of cash available to them. By employing people to solve the CAPTCHA problem, for as little as £2 or £3 a day, cyber criminals have access to millions of registered accounts," says Rik Ferguson at Trend Micro.
"These accounts are then used to send millions of spam messages with the aim of infecting users with a variety of malware, such as a keylogger that intends to solicit personal information such as banking information or passwords."
Registration is undertaken by automated bots, but the CAPTCHA portion of the process is sent to paid workers before the bot finishes the registration. That account can then be used to send spam emails to thousands of users.
There have been previous attempts to trick unpaid users into solving CAPTCHA tests on behalf of spammers, including programs that rewarded the user with pornographic images after each test.
- How to get the Windows 10 Technical Preview, plus release date, features and latest news
- Why the Microsoft Band could be a game changer
- Windows 10 trackpad shortcuts: Microsoft takes a leaf out of Apple's book
- Internet tax: what it is and why it failed
- HP's vision for the future of PCs: the 3D Sprout
- Google Glass: mugger bait, pub problem and other lessons learned from two dangerous weeks
- Twitter, please don't fiddle with my feed
- How Satya Nadella can get some pay-raise karma
- Windows 10: a step back to go forward
- Michael Dell: Cloud infrastructure is the roads, bridges and highways of the 21st century
- How to check your identity hasn’t been sold to the hackers
- Tim Cook: this is how much TV has changed since the 70s
- Westminster wins the .London battle
- 20 years of PC Pro: from deep pan pizza to virtualisation
- Five reasons why the Apple Watch leaves me cold
- How to sell more ebooks on Amazon
- 10 ways to make your business more secure
- Top five VoIP mistakes
- How to add in-app purchasing to an iPhone, Android or Windows app
- Remote-control ransomware: TeamViewer and software hardball
- Why laptops with serial ports matter to the Internet of Things
- Make your mobile battery last longer
- Small steps into handling Big Data
- Nexus 5: does it really run stock Android?
- How to get broadband to a garden office