Ah, a riveting tale of the modern internet: humans battling #CAPTCHA puzzles like medieval knights 🏰, except with far less excitement and far more #JavaScript 🤖🔧. Who knew enabling JavaScript was the key to proving your humanity? Apparently, the 200th #anniversary of benzene's discovery is best celebrated by wrestling with #browser #settings. 🥳💻
https://www.chemistryworld.com/opinion/benzene-at-200/4021504.article #internet #battles #benzene #HackerNews #ngated
#captcha
Markiere alle Bilder mit Bahnhöfen. The Singen-Gepäckaufbewahrungs-Captcha.
💃🕺 Behold, the #future of CAPTCHA: a dance-off to prove you're not a robot. Because typing distorted letters wasn't humiliating enough, now we're all expected to channel our inner Beyoncé just to read an article. Next up: sing-along CAPTCHA! 🎤🙄
https://dance-captcha.vercel.app/ #danceoff #CAPTCHA #technology #fun #humor #HackerNews #ngated
New BrowserVenom malware being distributed via fake DeepSeek phishing website
A new malicious campaign is distributing previously unknown malware through a fake DeepSeek-R1 LLM environment installer. The phishing site, promoted via Google Ads, mimics the official DeepSeek homepage. The attack installs BrowserVenom, an implant that forces all browsing traffic through a proxy controlled by threat actors, enabling network traffic manipulation and data collection. The infection process involves a fake CAPTCHA, exclusion of the user's folder from Windows Defender, and installation of a malicious certificate. BrowserVenom modifies browser settings across various platforms to route traffic through the attacker's proxy. Infections have been detected globally, with victims in Brazil, Cuba, Mexico, India, Nepal, South Africa, and Egypt.
Pulse ID: 68499d3d233e106b9d20d6ff
Pulse Link: https://otx.alienvault.com/pulse/68499d3d233e106b9d20d6ff
Pulse Author: AlienVault
Created: 2025-06-11 15:14:05
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#Africa #Brazil #Browser #CAPTCHA #CyberSecurity #Google #ICS #India #InfoSec #Malware #Mexico #Mimic #Nepal #OTX #OpenThreatExchange #Phishing #Proxy #RCE #Troll #Venom #Windows #bot #AlienVault
DRF captcha своими руками
Пришла мне тут по работе задача сделать возможность добавления товара в корзину пользователем без авторизации. Корзина, причем должна храниться на бэке для того, чтобы можно было проводить аналитику по неоформленным заказам, а также, если пользователь авторизуется, то добавлять эту корзину к его профилю для доступности ее с любых других устройств, на которых он (пользователь авторизован). Ясное дело, что для корзины одного пользователя в сеансе оформления заказа нужен уникальный идентификатор, по которому можно определить в какую “корзину” поместить товар. Так как на проекте мы использует REST подход к проектированию API, я подумал, что можно генерировать uuid ключ на клиенте и передавать его при каждом запросе добавления товара в корзину. Да, все бы хорошо, но возникает потенциальная проблема паразитных запросов от недоброжелателей. Да, безусловно, есть куча всяких способов защититься от троттлинга, но все это кажется мне в этой ситуации не совсем уместным. Поэтому, я решил, что лучше уникальный идентификатор генерировать на бэкенде, а выдавать его при прохождении CAPTCHA .
PyDoll – Async Python scraping engine with native CAPTCHA bypass
https://github.com/autoscrape-labs/pydoll
#HackerNews #PyDoll #Async #Python #scraping #CAPTCHA #bypass #WebScraping #PythonTools
LOL it refused to let me in. So I clicked every image with a car in it and it decided I was human.
#data scraping by #databrokers and websites is just a corporate version of #creepshots
Nasty little #PII data thieves snooping on our connections and collecting our data to sell.
You can't say no because goolag doesn't give you the option. #recaptcha and #captcha collects data on you.
There's no #consent when it comes to these corporations.
Tell your local politicians that you don't consent to #google monitoring every thing you do online.
Tell them what is going on!
🚨 ALERT! 🚨 Supreme Court gives Shiba Inu the keys to the Social Security vault! Meanwhile, Bloomberg's #captcha detective agency is hard at work making sure only real humans (and possibly meme dogs) can read this groundbreaking news. 🐕🔍
https://www.bloomberg.com/news/articles/2025-06-06/supreme-court-gives-doge-access-to-social-security-data #SupremeCourt #ShibaInu #SocialSecurity #Bloomberg #DogNews #HackerNews #ngated
How Threat Actors Exploit Human Trust: A Breakdown of the 'Prove You Are Human' Malware Scheme
A malicious campaign exploits user trust through deceptive websites, including spoofed Gitcodes and fake Docusign verification pages. Victims are tricked into running malicious PowerShell scripts on their Windows machines, leading to the installation of NetSupport RAT. The multi-stage attack uses clipboard poisoning and fake CAPTCHAs to deliver the malware. The campaign involves multiple domains, uses ROT13 encoding, and creates persistent infections. Similar techniques were observed in other spoofed content, including Okta and popular media apps. The attack capitalizes on user familiarity with common online interactions, emphasizing the need for vigilance and skepticism in online activities.
Pulse ID: 684209ff0c889eabbed70e8b
Pulse Link: https://otx.alienvault.com/pulse/684209ff0c889eabbed70e8b
Pulse Author: AlienVault
Created: 2025-06-05 21:19:59
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CAPTCHA #Clipboard #CyberSecurity #InfoSec #Mac #Malware #NetSupport #NetSupportRAT #OTX #OpenThreatExchange #PowerShell #RAT #Rust #Windows #bot #AlienVault
AMOS Variant Distributed Via Clickfix In Spectrum-Themed Dynamic Delivery Campaign By Russian Speaking Hackers
A sophisticated campaign using typo-squatted 'Spectrum' domains has been uncovered, spreading a new Atomic macOS Stealer (AMOS) variant. The attack, disguised as a CAPTCHA verification, employs dynamic payloads based on the victim's operating system. For macOS users, a malicious shell script steals system passwords and downloads an AMOS variant. The script uses native macOS commands to harvest credentials, bypass security, and execute malicious binaries. Russian-language comments in the source code suggest involvement of Russian-speaking cybercriminals. The campaign's delivery sites show flawed logic, indicating hasty assembly. This multi-platform social engineering attack targets both consumer and corporate users, highlighting an increasing trend in cross-platform threats.
Pulse ID: 68409d645a8736dcd88da7d5
Pulse Link: https://otx.alienvault.com/pulse/68409d645a8736dcd88da7d5
Pulse Author: AlienVault
Created: 2025-06-04 19:24:20
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#AMOS #Atomic #CAPTCHA #CyberSecurity #InfoSec #Mac #MacOS #OTX #OpenThreatExchange #Password #Passwords #RAT #RCE #Russia #SocialEngineering #Word #bot #AlienVault
Also ich möchte ja immer alle Probleme der Menschheit ein für alle mal lösen. Ich habe jetzt eine Lösung für das #EScooter-Problem gefunden.
Ihr kennt doch sicher alle diese #Captchas, bei denen wir irgendwelchen KI-Fuzzis helfen, zu lernen, was Zebrastreifen oder Busse sind. Ab morgen wird diese Art Captcha durch Escooter-Bilder ersetzt und man muss seine Menschlichkeit dadurch beweisen, dass man das Bild auswählt, auf dem der EScooter sinnvoll geparkt ist.
Das hat einen Erziehungseffekt und auch den Vorteil, dass unbelehrbare Idiot*innen von allen möglichen Angeboten ausgeschlossen sind.
Anbei zwei Beispiele. Ihr könnt schon mal testen, ob Ihr reinkämet.
Ah, the future is here! #Cockatoos with PhDs in #Hydraulics 🦜💧 have outsmarted the geniuses who can't seem to enable #JavaScript. But hey, who needs thumbs when you have a beak and bird-brained humans can't pass CAPTCHA? 🙄
https://www.science.org/content/article/cockatoos-have-learned-operate-drinking-fountains-australia #CAPTCHA #BirdBrains #HackerNews #ngated
Victims risk AsyncRAT infection after being redirected to fake Booking.com sites
Cybercriminals have launched a campaign redirecting users from gaming sites and social media to fake Booking.com websites. The scam uses fake CAPTCHA prompts to trick visitors into executing malicious commands on their devices. If successful, the attack downloads and installs AsyncRAT, a backdoor Trojan that allows remote monitoring and control of infected computers. The campaign, which began in mid-May, frequently changes its final redirect destination. The malicious actors exploit the fact that 40% of people book travel through online searches, creating ample opportunities for deception. To stay safe, users are advised to be cautious of website instructions, use anti-malware solutions, employ browser extensions that block malicious domains, and consider disabling JavaScript on unknown websites.
Pulse ID: 683f4a28139ebdbc4b63fd2d
Pulse Link: https://otx.alienvault.com/pulse/683f4a28139ebdbc4b63fd2d
Pulse Author: AlienVault
Created: 2025-06-03 19:16:56
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#AsyncRAT #BackDoor #Browser #CAPTCHA #CyberSecurity #InfoSec #Java #JavaScript #Malware #OTX #OpenThreatExchange #RAT #SocialMedia #Trojan #bot #AlienVault
Y’all, we have reached the point in the unraveling timeline where captchas have delved into theoretical philosophy. How can we know? When does Theseus’s ship cease to be his ship? Terry Pratchett posed a similar question in regard to the Low Kings Hammer...even though every piece has been replaced over time, is it not still the axe of my grandfather?
#philosophy #TheseusShip #captcha #SpottedInTheSimulation
Client Info
Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst