2 weeks Ago
Not content with deceiving Internet users through phishing campaigns and the creation of increasingly convincing fake websites, cybercriminals are now deploying fake CAPTCHAs, the automated tests designed to verify that you're "not a robot” when you visit a website. Typically, a CAPTCHA involves copying numbers and letters, or solving small, simple tasks such as selecting specific images. Unfortunately, this technology is increasingly being hijacked by hackers, who are now using fake CAPTCHAs to deceive Internet users and compromise the security of their devices or steal personal information.
It has become relatively easy to encounter these fake CAPTCHAs, notably by clicking on a compromised advertisement or link. The user is then directed to a page displaying a fake test, at the end of which a malicious script can be executed, leading to the installation of harmful software on the user's device. Malwarebytes warns of this new tactic of luring users to websites offering popular content, such as news articles, but also music or movies.
Once redirected, users are faced with a CAPTCHA prompting them to follow instructions that copy and paste information. Without realizing it, the user then unwittingly executes a command that downloads and installs malicious software onto their device. Fortunately, it's still fairly easy to recognise a fake CAPTCHA.
This is the case, for example, if the test seems much more complex than usual, or if you are asked to perform unusual actions, such as executing commands or copying and pasting text. In the meantime, don't forget to update your web browser. – AFP Relaxnews.
