micky wrote:
On Mon, 07 Nov 2011 20:38:32 -0500, FromTheRafters
Nobody> (Revisited) wrote:
On 11/7/2011 3:05 PM, micky wrote:
I'm not sure about the automation aspect, but I always assumed it
was
so. I've even heard of automatic account creation programs that
enlist already compromised computers to 'ransom' their computing
power and get the user to supply answers to 'CAPTCHA' strings as
payment.
What! I've never heard of this. Extortion by spammers, against
someone who knows he's being extorted. And like with kidnappers, how
does he know they'll let his computer go free if he pays?
It does sound bizarre, but it's been seen in "developing countries".
I think "ransom" wasn't exactly the right wording tho.
The CAPTCHAs are fed at the user disguised as "activity checks",
often found in cheezy internet cafes. You have to do the CAPTCHA to
keep from getting booted off.
Yeah, it was perhaps overstated a bit.
) But to the user it seems
that nothing can be done except enter the symbols to be able to
continue with what they were doing with the computing power they are
now temporarily being deprived of.
I've got your clock cycles, if you want them back then pay me these
symbols represented herein (see map of distorted text characters
inset).
So this is done in order to get a human to translate those distorted
character boxes**, since the bad computer can't do that without human
help?
That's the idea - clever huh? Users will always be the weakest link in
the security chain.
[...]