From cyware.com:
In a recent campaign, scammers were seen using the legitimate reCaptcha walls for a phishing email scam involving a fake Microsoft login page.
- Sophisticated scammers have identified a way to use the reCaptcha service to prevent automated URL analysis systems from analyzing the actual content of phishing pages, making these scams more realistic to their victims.
- A single phishing campaign was identified by the security firm, Barracuda Networks, in which 128,000 emails were sent to a variety of organizations and employees using reCAPTCHA walls, posing as fake Microsoft login pages.
- One of the sample phishing emails included a voicemail message received by the victim. Upon clicking, it took users to a genuine-looking page with a reCaptcha wall.
- Solving the reCAPTCHA wall redirects the victims to a fake Microsoft login page, asking users for Microsoft credentials to proceed, which are then sent straight to the fraudsters.
https://cyware.com/news/cybercriminals- ... e-47cb122d
Cybercriminals Now Leverage reCAPTCHA Walls to Appear Legitimate
-
- I live above an internet cafe
- Reactions: 8
- Posts: 148
- Joined: Sat Jan 04, 2020 4:13 am
-
- I've got nothing better to do
- Reactions: 7
- Posts: 75
- Joined: Fri Apr 26, 2019 1:33 am
This is more to stop automated phishing detector bots rather than as a social engineering attack.
As someone whos reverse engineered Recaptcha in the past bypassing it with an 80% + accuracy rate is fairly easy and there are ways to bypass it with higher success rates but are resource-intensive (multiple accounts which are currently viewing youtube videos).
Tools like evilginx2 are the ones which are really sneaky as they can deal with 2-factor authentication.
As someone whos reverse engineered Recaptcha in the past bypassing it with an 80% + accuracy rate is fairly easy and there are ways to bypass it with higher success rates but are resource-intensive (multiple accounts which are currently viewing youtube videos).
Tools like evilginx2 are the ones which are really sneaky as they can deal with 2-factor authentication.