Breaking News

SAMA Launches Exclusive Amazon Prime Day Deals on Flagship PC Cases and AIO Cooler Lineup Transcend Launches Ultra-Fast PCIe Gen5 SSD MTE260S Power Your World with DJI's New Portable Power Station Power 2000 G.SKILL CAMM2 DDR5 Memory Module Demonstrates DDR5-10000 Overclock Speed on ASUS Z890 Motherboard JCB Phone Launches New Rugged Smartphone Range to Power Global Expansion

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Essays
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

Kaspersky Discovers Trojan That Tricks CAPTCHA Into Thinking Its Human

Kaspersky Discovers Trojan That Tricks CAPTCHA Into Thinking Its Human

Smartphones Mar 11,2015 0

The first malware to successfully outwit the CAPTCHA image recognition system has been detected by Kaspersky Lab’s security analysts. The Russian internet security software company said that the Trojan-SMS.AndroidOS.Podec has developed a technique to convince CAPTCHA it is a person in order to subscribe thousands of infected Android users to premium-rate services. First detected in late 2014 and updated since then, Podec automatically forwards CAPTCHA requests to a real-time online human translation service that converts the image to text. It can also bypass the Advice on Charge system, which notifies users about the price of a service and requires authorization before payment. The Trojan’s goal is to extort money from victims via premium-rate services.

According to data collected with the help of the Kaspersky Security Network, Podec targets Android device users primarily through Russia’s popular social network, VKontakte (VK, vk.com). Other sources discovered by Kaspersky Lab include domains with the names of Apk-downlad3.ru and minergamevip.com. Most victims to date have been detected in Russia and surrounding countries.

Infection generally occurs through links to supposedly cracked versions of popular computer games, such as Minecraft Pocket Edition. These links appear on group pages and victims are drawn in by the lack of cost and what appears to be a far lower file size for the game when compared to the legitimate version. Upon infection, the Podec malware requests administrator privileges that, once granted, make it impossible to delete or halt the execution of the malware.

CAPTCHA image recognition requests are increasingly added to online forms to ensure the request is submitted by a person and not automated software. Podec passes CAPTCHA by redirecting the CAPTCHA processor to an online image-to-text recognition service, Antigate.com. Within seconds the text from the CAPTCHA image is recognized by a person and the details are relayed back to the malware code, which can then proceed with execution.

Further, the Trojan employs highly sophisticated techniques to prevent any analysis of its code. As well as introducing garbage classes and obfuscation into the code, the cybercriminals use an expensive legitimate code protector which makes it difficult to gain access to the source code of the Android application.

Kaspersky Lab believes that the development of the Trojan is ongoing; that the code is being refactored, new capabilities are being added, and module architectures are being reworked.

Kaspersky recommends that Android users only install applications sourced from official stores such as Google Play, and avoid downloading cracked apps advertised as being free of charge.

Tags: Kasperskytrojans
Previous Post
HTC One E9 Specs Leak Online
Next Post
Sharp Will Not Appeal IGZO Court Decision

Related Posts

  • Hackers Target Microsoft Office's Vulnerabilities

  • Cybercriminals Use Popular TV Shows to Spread Malware

  • Hackers Took Over Asus Software to Inject Malicious Code to Laptops

  • Kaspersky Lab Files Antitrust Complaint Against Apple

  • New Trojan Found Nested in Sofwtare From Pirate Bay

  • Android Trojan Steals Money From PayPal Accounts

  • Cryptominers Gain Ground Over Ransomware

  • Kaspersky Lab Moving Core Infrastructure to Switzerland

Latest News

SAMA Launches Exclusive Amazon Prime Day Deals on Flagship PC Cases and AIO Cooler Lineup
Cooling Systems

SAMA Launches Exclusive Amazon Prime Day Deals on Flagship PC Cases and AIO Cooler Lineup

Transcend Launches Ultra-Fast PCIe Gen5 SSD MTE260S
PC components

Transcend Launches Ultra-Fast PCIe Gen5 SSD MTE260S

Power Your World with DJI's New Portable Power Station Power 2000
Consumer Electronics

Power Your World with DJI's New Portable Power Station Power 2000

G.SKILL CAMM2 DDR5 Memory Module Demonstrates DDR5-10000 Overclock Speed on ASUS Z890 Motherboard
PC components

G.SKILL CAMM2 DDR5 Memory Module Demonstrates DDR5-10000 Overclock Speed on ASUS Z890 Motherboard

JCB Phone Launches New Rugged Smartphone Range to Power Global Expansion
Smartphones

JCB Phone Launches New Rugged Smartphone Range to Power Global Expansion

Popular Reviews

be quiet! Light Loop 360mm

be quiet! Light Loop 360mm

be quiet! Dark Mount Keyboard

be quiet! Dark Mount Keyboard

Arctic Liquid Freezer III 420 - 360

Arctic Liquid Freezer III 420 - 360

be quiet! Light Mount Keyboard

be quiet! Light Mount Keyboard

Soundpeats Pop Clip

Soundpeats Pop Clip

Noctua NH-D15 G2

Noctua NH-D15 G2

be quiet! Light Base 600 LX

be quiet! Light Base 600 LX

Crucial T705 2TB NVME White

Crucial T705 2TB NVME White

Main menu

  • Home
  • News
  • Reviews
  • Essays
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed