captcha

Challenge-response techniques called "CAPTCHAs" designed to keep spambots off Web sites can easily be broken by humans who are paid to type in the responses, according to a new report from security firm Imperva.

CAPTCHAs, which stands for Completely Automated Public Turing test to tell Computers and Humans Apart, are created by programs and are intended to be difficult for computers to fill out.

"One of its inherent flaws today is that it can be easily bypassed by outsourcing it to human solvers for a very low cost," the study (PDF) says. "When the CAPTCHA … Read more

When it launched in 2010, NuCaptcha touted its proprietary technology as being able to "provide the highest level of security available" by using video streams to display those distorted letters you type in to prove you're really a human.

Now, however, the company's claims of providing "the next generation of Captcha security" look a tad optimistic.

A team of Stanford University researchers said today that they discovered a way to break the security of a recent version of NuCaptcha's video Captcha by borrowing concepts from the field of machine vision, which developed techniques … Read more

PALO ALTO--A team of Stanford University researchers has bad news to report about Captchas, those often unreadable, always annoying distorted letters that you're required to type in at many a Web site to prove that you're really a human.

Many Captchas don't work well at all. More precisely, the researchers invented a standard way to decode those irksome letters and numbers found in Captchas on many major Web sites, including Visa's Authorize.net, Blizzard, eBay, and Wikipedia.

Their decoding technique borrows concepts from the field of machine vision, which has developed techniques to control robots by … Read more

Google TV uncovers an update, something is sucking the life from the iPhone 4S, and evil robots cannot be stopped by Captcha...or at least some of them.

Links from Monday's spook-tacular episode of Loaded:

Modern captchas are effective at keeping bots and algorithms from accessing Web sites made for humans. They also generate collateral damage and keep up to 25 percent of humans out, too, according to Ron Moravek, COO of NuCaptcha. He says he has a better, more flexible technology for filtering humans from bots.

NuCaptcha is a replacement technology for the free, Google-owned ReCaptcha service. There are two major differences between NuCaptcha and ReCaptcha. First, NuCaptcha displays moving text against a moving image. While this makes it harder for computers to discern text from background, it makes it much easier for humans. … Read more

Cybercriminals are likely to find more jobs next year, one of five top trends forecast by security vendor Fortinet.

In an ironic twist in the job market, more positions will open up for developers who can write customized malware packers, people who can break CAPTCHA codes, and distributors who can spread malicious code, according to Fortinet.

And though cybercrooks have typically deployed their own botnets themselves, Fortinet believes this job will increasingly be farmed out to middlemen, citing the Alureon and Hiloti botnets as two examples of malware distributed this way. Money mules responsible for wiring funds and cashing checks … Read more

Facebook just launched a new suite of features for Facebook Places that might be the beginning of the end for Web privacy as we know it. Luckily Natali Del Conte is around to calm us down and explain what's really going on with the new location-based deals.

Facebook Places is a service that lets users share their location directly on their mobile phones, but the latest product is called Deals, and it allows businesses to advertise to target customers by offering a special discount for those who "check in" at a location.

Once users activate it, Facebook will share the deal on their walls so others can cash in as well, and business can even offer "loyalty" discounts for members that return to a venue. The FourSquare and Loopt offices must be getting pretty hot right now.

If mobile tracking weren't enough, soon you won't even be able to watch a movie without being watched yourself! In an effort to combat Web piracy, some movie theaters are installing video cameras in front of the movie screens, designed to also monitor crowd reactions to trailers for market research on what audiences prefer to watch.

Even worse, the same company, Aralia Systems, is also planning to roll out infrared scanning systems at the ticket-purchasing stations that scan for recording devices and will sound an alarm to alert management if an illegal instrument is detected. It sounds similar to the TSA's "enhanced" security screenings we've been hearing about recently!

Internet "Captchas" have been around for a while--they're tests placed on some Web sites to determine whether the user is human, and they usually come in the form of a randomly generated word or phrase that you have to copy into a field to gain access.

They're only slightly irritating and require little participation to enter, but a software firm called NuCaptcha is hoping that video advertisement captchas will be the online ads of the future.

Instead of traditional squiggly words, the new system forces users to watch a video advertisement with a short message scrolling across it. After it's done, it'll ask you to identify and retype a part of the message to continue toward your destination, and although it sounds like an annoying process, companies like EA, Wrigley, and Disney have already signed up with hopes that people will actually pay attention to the ads instead of just clicking through. Soon we'll be reminiscing about a time when all you needed was a pop-up blocker to surf under the radar!

Thanks to Natali Del Conte for joining us on this rainy Thursday, and be sure to check us out tomorrow morning with Steve Guttenberg, aka The Audiophiliac!

Natali Del Conte joins us in the studio to discuss really important issues such as boobquake day, cartoons, and violent video games. Oh, come on, we also discuss Google's failed attempts to reinvent the mobile phone sales paradigm, unfounded causal links between violent video games and sociopathic behavior, and the dangers of colonization. Good show, guys.

Google Nexus One Gone From Verizon Lineup http://jkontherun.com/2010/04/26/no-nexus-one-on-verizo/ http://preview.bloomberg.com/news/2010-04-26/verizon-says-it-has-no-current-plans-to-distribute-google-nexus-one-phone.html http://www.cnet.com/8301-19736_1-20003397-251.html… Read more

Facebook on Thursday fended off an attack in which multiple identical profiles were created to spread malware.

Antivirus provider AVG Technologies said users of its LinkScanner service detected numerous profiles that were identical except with different names and each included a link to what was represented as a home video but which instead displayed a fake antivirus alert when clicked. The scams are designed to trick people into paying for software they don't need, to get credit card information from victims for identity fraud purposes, and often to install spyware on the computer.

"Clearly, the Data Snatchers have … Read more