Spammers employ humans to break email tests
By Matthew Sparkes
Posted on 9 Apr 2008 at 10:39
Spammers are employing human workers to sign up for thousands of free email accounts from which to distribute phishing emails, claims a new report.
The report, from TrendLabs, claims workers in India are being used to solve the CAPTCHA tests (Completely Automated Public Turing test to tell Computers and Humans Apart) during registration for free online email accounts. At least one large supplier of free accounts has been heavily targeted, claims the company.
Although there are existing algorithms that allow computers to solve the tests around a third of the time, human workers can approach 100% accuracy.
"The cybercrime industry is no longer the reserve of individuals, but that of organised gangs with large amounts of cash available to them. By employing people to solve the CAPTCHA problem, for as little as £2 or £3 a day, cyber criminals have access to millions of registered accounts," says Rik Ferguson at Trend Micro.
"These accounts are then used to send millions of spam messages with the aim of infecting users with a variety of malware, such as a keylogger that intends to solicit personal information such as banking information or passwords."
Registration is undertaken by automated bots, but the CAPTCHA portion of the process is sent to paid workers before the bot finishes the registration. That account can then be used to send spam emails to thousands of users.
There have been previous attempts to trick unpaid users into solving CAPTCHA tests on behalf of spammers, including programs that rewarded the user with pornographic images after each test.
- WWDC 2013 and iOS 7 launch: live blog
- Sony VAIO Pro review: first look
- Want child porn blocked? Meet the IWF
- Is it worth upgrading a media centre to Windows 8?
- Flickr redesign: is it enough to tempt photographers back?
- Hands on with the new Google Maps
- Nokia Lumia 925 review: first look
- Why I won't subscribe to Creative Cloud
- GoPro camera strapped to a remote-control helicopter: the ultimate boy's toy
- Acer Iconia A1 review: first look
- Facebook "click on the photo" scams: how they work
- Three alternatives to Word's spelling and grammar checker
- Google two-step verification: a must for business email
- Microsoft Office and the death of upgrades
- The ICO's shame-faced u-turn on cookies
- Start8 and ModernMix: making Windows 8 work on a desktop
- How to boost your mobile reception
- How to fix Facebook: Social Fixer
- Taking the stress out of WordPress updates
- Where to download free web fonts