Infosecurity.US

Information Security & Occasional Forays Into Adjacent Realms

  • Web Log

Image Courtesy of Microsoft Security

Miscreant Hackers Co-Opt CAPTCHAs

June 25, 2020 by Marc Handelman in Miscreants, CAPTCHA Exploitation, Information Security, Deception, Misdirection, Evasion

In a masquerade and redirection ploy typically utilized by land, sea (surface and submersable), air and (highly likely) space warfare professionals, comes word of the same tactic targeting civilian users of our collectively beloved interwebs. Read, if you will, Dan Goodin's superlative prose (whilst ensconced at ArsTechnica), describing - in excrutiating detail - the ploy, as it were.

“CHIMBORAZO, the group behind Dudear campaigns that deploy the info-stealing Trojan GraceWire, evolved their methods once again in constant pursuit of detection evasion,” Microsoft’s Security Intelligence group wrote in a Tweet on Wednesday. “The group is now using websites with CAPTCHA to avoid automated analysis.” - via Dan Goodin writing at ArsTechnica .

June 25, 2020 /Marc Handelman
Miscreants, CAPTCHA Exploitation, Information Security, Deception, Misdirection, Evasion

Why You Should Not Trust Your Weather App →

March 24, 2018 by Marc Handelman in Physical Sciences, Mundane Data Warfare, Natural Philosophy, Misdirection, Physical Security, Misinformation, Information Security

Interesting exposé of the current state of truth (or prevarication) within weather prediction applications available to the masses on their phones, in their vehicles, offices, and at home.

In this case, the messenger - anecdotally - is not particularly important, as the science can speak for itself. Emperically, we have found similarities (but not exactitude) in the data discussed.

March 24, 2018 /Marc Handelman
Physical Sciences, Mundane Data Warfare, Natural Philosophy, Misdirection, Physical Security, Misinformation, Information Security

FNaaS →

June 16, 2017 by Marc Handelman in Misinformation, Misdirection, Information Security, Information Manipulation

via John Leyden, plying his trade at El Reg, comes this tremendous piece on FNaaS - based on the new report by TrendMicro detailing Fake News as a Service (PDF). Hat Tip to Trey Blalock at Firewall Consultants.

June 16, 2017 /Marc Handelman
Misinformation, Misdirection, Information Security, Information Manipulation