How long until an enterprising scumbag tries to use this to communicate with their botnet?
It's already been done with Twitter/Tumblr[1] -- anyone know if it's been done with pastebin or any other login-free online note app not protected by a decent CAPTCHA? I'm genuinely curious!
Oh I doubt you'll have to worry about it, it just got me thinking. Botnet operators will likely only experiment with bigger note-app websites that have been around for a while and which have legit traffic to hide their activities.
12 comments
[ 2.6 ms ] story [ 40.3 ms ] threadWhat could go wrong?
It's already been done with Twitter/Tumblr[1] -- anyone know if it's been done with pastebin or any other login-free online note app not protected by a decent CAPTCHA? I'm genuinely curious!
[1]http://ddos.arbornetworks.com/2009/08/twitter-based-botnet-c...
Right now I'm not concerned just because it's not very popular. May have to think about adding some kind of check in the future.
There is also one where you assemble a puzzle: https://www.keycaptcha.com/
They have varying levels of handicapped accessibility though.