We found fake CAPTCHAs hiding malware in uploaded files (tigrisdata.com) 3 points by ovaistariq 1y ago ↗ HN
[–] ovaistariq 1y ago ↗ At Tigris, we encountered a pattern where uploaded files included fake CAPTCHA screens as a way to hide malicious payloads and bypass detection.These fake CAPTCHAs look legitimate but are used to trick users into executing malware, and they're surprisingly effective at evading static analysis.We shared what we found and how we're improving our detection pipeline: https://www.tigrisdata.com/blog/fake-captchas/
2 comments
[ 3.1 ms ] story [ 16.9 ms ] threadThese fake CAPTCHAs look legitimate but are used to trick users into executing malware, and they're surprisingly effective at evading static analysis.
We shared what we found and how we're improving our detection pipeline: https://www.tigrisdata.com/blog/fake-captchas/