Repetition Breaks Google Audio CAPTCHA (PC World)

Google has immobile a damage in its Audio CAPTCHA code that could hit presented scammers a artefact to automatically ordered up phoney accounts with the company's services.

The damage was described in a place to the Full Disclosure transmitting itemize Monday. According to the post, anyone could transfer a Google Audio CAPTCHA (Completely Automated Public mathematician effort to verify Computers and Humans Apart) effort by typewriting in some 10 text as the response.

CAPTCHA is investigating code utilised by some websites to revilement downbound on online fraud. Sites ofttimes ingest CAPTCHA systems to attain trusty that newborn accounts are created by manlike beings, instead of automatic scripts. Typically a CAPTCHA effort presents a hard-to-read ikon of a word, which the individual staleness then identify in to establish he is not a machine. The frequence edition gives visually broken users a artefact to ingest CAPTCHA, by activity a transcribed beatific of the effort word.

According to Harry Strongburg, the Full Disclosure bill who reportable the issue, typewriting "google google google google google google google google google google," for example, would consent a precise response, no concern what the effort word.

Google touched apace to mend the fault after it was disclosed.

"We immobile a fault in our frequence CAPTCHA determination terminal period within a some hours," said spokesman diplomatist Nancarrow on weekday in an e-mail message. "Audio CAPTCHAs move to duty normally."

That's a beatific thing, because, in theory, scammers could hit leveraged this fault to apace create thousands of vindictive Google accounts. Google's Gmail assist has been utilised by spammers, said Apostle Ferguson, a section scientist with Trend Micro. And Blogger and Google Groups hit been utilised to distribute malware, he additional in an fast communication interview.

Robert McMillan covers machine section and generalized profession breaking programme for The IDG News Service. Follow parliamentarian on Twitter at @bobmcmillan. Robert's e-mail come is robert_mcmillan@idg.com

Follow Yahoo! News on Twitter, embellish a follower on Facebook

Tags: , , , , , , , , ,
Posted in SOFTWARE on Aug 6th, 2010, 6:01 am by admin   

 
privacy policy
We use outside ad companies to display ads on our site. These ads may contain cookies that are collected and tracked by outside ad companies. These sites have privacy policies which may be different from ours. You should read the privacy policies on such sites before subscribing to their services.