Spammers Crack Windows Live Mail's CAPTCHA System

Filed in archive Spam News by Sue Walsh on February 9, 2008

Websense Security Labs is reporting that spammers have found away around Windows Live Mail's CAPTCHA system and are using bots to create thousands of accounts to spam with. Since the Microsoft domain is more or less blacklist proof, it's very attractive to spammers. From the Websense blog:

First, the bot is observed to request the Live Mail registration page and it begins filling in the necessary form fields (as any ordinary user would be required to) with random data. When it comes to the CAPTCHA verification test, the bot sends the CAPTCHA image to its CAPTCHA breaking service for the text in the image

Websense believes that these accounts could be used by the spammers at any time for a variety of social-engineering attacks in future. A wide range of attacks would be possible using the same account credentials in other significant and extended Live services offered by Microsoft Corporation, such as Live Messenger (instant messaging), Live Spaces (online storage), etc.

Check out their blog for screenshots of the spam and the process the spammers are using to get around the CAPTCHA system. This is looking to be a huge problem for Microsoft!

Related Entries:

GFI Adds Support for January 2008 Microsoft Security Updates - 31 January 2008
Security Software Industry Takes First Steps Towards Forming... - 05 February 2008
Using Throttling and Traffic Shaping to Fight Spam - 08 February 2008
Judge Orders End to Weight Loss Spam Organization - 09 February 2008
Spammers Use Lunar Eclipse to Deliver Malware - 23 February 2008
Spammers top 10 report: US Leading the Axis of Evil! - 29 February 2008

« Judge Orders End to Weigh... | Main | Hackers Attack Anti-Virus... »

Permalink: Spammers Crack Windows Live Mail's CAPTCHA System

Tags: Anti spam Server anti spam Anti spam for exchange Exchange spam Attachment spam Antiphishing Spam bl

Trackback: http://publish.creative-weblogging.com/publish/mt-tb.pl/113181

Addthis

Ask

Blinklist

del.icio.us

Digg

Fark

Facebook

Google

Lycos

Ma.gnolia

Mr Wong

Netscape

Netvousz

Newsvine

StumbleUpon

Slashdot

Tailrank

Technorati

Wink

Yahoo

Vote for Spammers Crack Windows Live Mail's CAPTCHA System:

Currently 6.17/10
1
2
3
4
5
6
7
8
9
10

Rating: 6.17 out of 18 vote(s) cast.

Response from: andrena (09/07/08 6:20am)

can you help?

Response from: jullya4@link.net (03/14/09 10:14am)

Good evening. Winning is important to me, but what brings me real joy is the experience of being fully engaged in whatever I'm doing.
I am from Ireland and learning to read in English, give please true I wrote the following sentence: "Airline tickets at discounted fares for travel to worldwide destinations."

With best wishes :o, Sherri.

Response from: heriol (03/22/09 2:33pm)

A modern search engine of the Megaupload web is available for everybody- if you want to download some music, films or software just get the link and download from http://megauploadfiles.com/
-everything is simple!

Response from: desio (04/30/09 9:55am)

If pointing out bloated, inefficient code and sloppy use of RAM qualifies one as a naysayer, then sign me up. I don't own stock in any RAM manufacturers. this use http://file.sh/windows+7+build+torrent.html

Response from: valon (08/22/09 6:38am)

oloaa

Response from: neon tabela (08/29/09 12:28pm)

te?ekk�rler. payla??m ve bilgiler i�in..