Search Perform an advanced search query SOFTPEDIA
 
SOFTPEDIA
Updated one minute ago
HomeSubmit a program for being reviewedAdvertise on our websiteGet help on surfing our websitesSend us your feedbackGet information about our XML/RSS backend and how to use itBrowse the news archiveVisit our discussion forumVizitati forumul in limba romana



KLIP
  1. HOME
  2. SCIENCE
  3. TECHNOLOGY
  4. WEBMASTER
  5. SECURITY
  6. MICROSOFT
  7. LINUX
  8. APPLE
  9. GAMES
  10. TELECOMS
  11. REVIEWS
  12. LIFE & STYLE
  13. EDITORIALS
  14. INTERVIEWS
  15. RSS
Welcome!
Hello, Guest

Login if you have a Softpedia.com account.

Otherwise, register for one.

INCIDENTS

Hackers Cracked Google's Blogger CAPTCHA

- In order to create websites for spamming purposes

By: Bogdan Popa, Security and Search Engines Editor

Following the recent reports that hackers managed to break into the Windows Live Hotmail CAPTCHA and to create email accounts for spamming purposes,
another web-service gets compromised with the same goal. Google's Blogger, the free blogging platform which lets users create blogs and post messages from a web-based administration panel, is now being used by spammers to build page redirectors and websites hosting malicious files.

According to security company Websense, the entire process is done with the help of automated applications which do nothing more than to create lots of accounts using predefined settings. Although the CAPTCHA were especially implemented to prevent such cases, the attackers have developed advanced bots which bypass them and create Blogger accounts.

"Spammers have managed to create automated bots that are capable of not only signing up and creating Blogger accounts (using spammer account credentials), but also use these accounts as redirectors and doorway pages for advertising their products and services," Websense wrote in an entry published on its blog.

There are several reasons why spammers turned to Google's Blogger. First of all, the service is available for free for all the users so creating accounts shouldn't be too difficult. Moreover, the created accounts "can be used as redirectors or doorway pages to spammers’ domain(s)," Websense explains. "These redirecting or doorway page accounts can be used in multiple mass-mailing campaigns for subsequent attacks."

As reported a few weeks ago, six seconds are enough for a spammer to bypass the Windows Live Hotmail CAPTCHA and to create a new spamming account. Although it has not been confirmed yet, breaking into the Blogger CAPTCHA shouldn't be too difficult and, because the spammers found this way to create spamming accounts, expect an avalanche of malicious websites based on Blogger anytime soon.

MORE RELATED ARTICLES: Blogging from Social Networks Enhanced by Six Apart Stop Praising Google! Blogger Feats Galore WordPress Taking after Gmail in Free Space Create Efficient Blogs for Free
 
Comments | Link here | Subscribe
Print | Send to friend
Today's News | Yesterday's News

Search:

TAGS: google blogger captcha security spam

25th April 2008, 12:57 GMT | Copyright (c) 2008 Softpedia | Contact:
Read by 894 user(s) | Rating: | 6 vote(s) so far | Cast your vote:
Hackers Cracked Google's Blogger CAPTCHA - USER OPINIONS




We are sorry, there are no opinions available for this article.


SHARE YOUR OPINION ABOUT Hackers Cracked Google's Blogger CAPTCHA

Since you are not logged on, your comments will have to be approved before being displayed.
Click here to login, or register.
Your Name:
Your Email:
Type in the result:
Your Opinion:
 


DO YOU WANT TO CONTACT US?  

If you have some comments or you want to send us some information you can send us an email directly to .
You can use the form below for the same purpose.
Your full name: (at least 3 characters)
Your email address: (at least 5 characters)
Message subject: (at least 5 characters)
Message text:
(at least 10 characters)
Type in the result:
 
 
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and Softpedia™ logo are registered trademarks of SoftNews NET SRL.
Copyright Information | Privacy Policy | Terms of Use | Contact Softpedia | Update your software | Archive