{"id":17,"date":"2008-02-27T16:40:58","date_gmt":"2008-02-27T14:40:58","guid":{"rendered":"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/"},"modified":"2008-02-27T16:41:44","modified_gmt":"2008-02-27T14:41:44","slug":"caen-los-captchas-de-yahoo-msn-y-gmail","status":"publish","type":"post","link":"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/","title":{"rendered":"Caen los \u00abcaptcha\u00bbs de Yahoo, MSN y Gmail"},"content":{"rendered":"

El mes pasado, nos enter\u00e1bamos<\/a> de que el captcha<\/a><\/em> de Yahoo hab\u00eda sido \u00abroto\u00bb seg\u00fan un grupo de investigaci\u00f3n ruso<\/a> que facilitaba incluso el software<\/a> que lo \u00abrompe\u00bb. Desgraciadamente, no se puede ver el c\u00f3digo fuente :( :<\/p>\n


<\/p>\n

\r\nsplit@debian:\/tmp\/CaptchaServ$ ls -l\r\ntotal 240372\r\n-rw-r--r-- 1 split split   4627277 ago  6  2007 3005\r\n-rw-r--r-- 1 split split 239860412 ago  3  2007 34997\r\n-rw-r--r-- 1 split split      4008 ene 16 14:40 CaptchaServ.cpp\r\n-rw-r--r-- 1 split split       911 dic 15 15:18 CaptchaServ.sln\r\n-rw-r--r-- 1 split split      8704 ene 16 13:26 CaptchaServ.suo\r\n-rw-r--r-- 1 split split      3616 ene 16 13:30 CaptchaServ.vcproj\r\n-rw-r--r-- 1 split split      2270 ene 16 14:54 Capthca.jpg\r\n-rw-r--r-- 1 split split   1232223 ago  6  2007 segmentation_yahoo.ctf\r\n-rw-r--r-- 1 split split     36864 ago  6  2007 segmentation_yahoo.dll\r\n-rw-r--r-- 1 split split     81920 ene 16 01:42 yahoo_m.dll\r\n-rw-r--r-- 1 split split       294 ene 16 13:37 yahoo_m.h\r\n-rw-r--r-- 1 split split      2240 ene 16 00:42 yahoo_m.lib<\/pre>\n

<\/p>\n
Roto el captcha<\/em> de Yahoo, que comentaban que era el m\u00e1s fuerte o dif\u00edcil de romper, hace poco ca\u00eda<\/a> tambi\u00e9n el de Windows Live y hace unos pocos d\u00edas, se romp\u00eda<\/a> tambi\u00e9n el de Gmail. Todo ello, por segunda<\/a> vez, ya que durante Julio del 2007 se crearon m\u00e1s de 500.000 cuentas en estos servicios para el env\u00edo de spam.<\/p>\n
El proceso se puede ver en el estudio hecho por WebSense para el caso de Hotmail<\/a> y para el caso de Gmail<\/a> en el que se muestran capturas de tr\u00e1fico de red de bots que realizan la operaci\u00f3n. En el caso de Gmail de hecho, el bot env\u00eda la informaci\u00f3n de la imagen a un host en concreto para que realice el \u00abcrackeo\u00bb de la imagen y devuelva el resultado al bot para que proceda a crear las cuentas.<\/p>\n
La creaci\u00f3n de este tipo de cuentas es bastante peligroso debido principalmente a que Yahoo, Hotmail y Gmail no son normalmente filtrados ni por listas negras ni por otros an\u00e1lisis antispam, as\u00ed que ya se pueden poner las pilas :)<\/p>\n","protected":false},"excerpt":{"rendered":"
El mes pasado, nos enter\u00e1bamos de que el captcha de Yahoo hab\u00eda sido \u00abroto\u00bb seg\u00fan un grupo de investigaci\u00f3n ruso que facilitaba incluso el software que lo \u00abrompe\u00bb. Desgraciadamente, no se puede ver el c\u00f3digo fuente :( : split@debian:\/tmp\/CaptchaServ$ ls … Sigue leyendo →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[3],"tags":[19,18,16,111,17],"yoast_head":"\nCaen los "captcha"s de Yahoo, MSN y Gmail - www.alvaromarin.com<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/\" \/>\n<meta property=\"og:locale\" content=\"es_ES\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Caen los "captcha"s de Yahoo, MSN y Gmail - www.alvaromarin.com\" \/>\n<meta property=\"og:description\" content=\"El mes pasado, nos enter\u00e1bamos de que el captcha de Yahoo hab\u00eda sido \u00abroto\u00bb seg\u00fan un grupo de investigaci\u00f3n ruso que facilitaba incluso el software que lo \u00abrompe\u00bb. Desgraciadamente, no se puede ver el c\u00f3digo fuente :( : split@debian:\/tmp\/CaptchaServ$ ls … Sigue leyendo →\" \/>\n<meta property=\"og:url\" content=\"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/\" \/>\n<meta property=\"og:site_name\" content=\"www.alvaromarin.com\" \/>\n<meta property=\"article:published_time\" content=\"2008-02-27T14:40:58+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2008-02-27T14:41:44+00:00\" \/>\n<meta name=\"author\" content=\"Alvaro Mar\u00edn Illera\" \/>\n<meta name=\"twitter:label1\" content=\"Escrito por\" \/>\n\t<meta name=\"twitter:data1\" content=\"Alvaro Mar\u00edn Illera\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tiempo de lectura\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/\",\"url\":\"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/\",\"name\":\"Caen los \\\"captcha\\\"s de Yahoo, MSN y Gmail - www.alvaromarin.com\",\"isPartOf\":{\"@id\":\"http:\/\/www.alvaromarin.com\/#website\"},\"datePublished\":\"2008-02-27T14:40:58+00:00\",\"dateModified\":\"2008-02-27T14:41:44+00:00\",\"author\":{\"@id\":\"http:\/\/www.alvaromarin.com\/#\/schema\/person\/287057c6a545a612badd5caa00bfd0bf\"},\"breadcrumb\":{\"@id\":\"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/#breadcrumb\"},\"inLanguage\":\"es\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Portada\",\"item\":\"http:\/\/www.alvaromarin.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Caen los \u00abcaptcha\u00bbs de Yahoo, MSN y Gmail\"}]},{\"@type\":\"WebSite\",\"@id\":\"http:\/\/www.alvaromarin.com\/#website\",\"url\":\"http:\/\/www.alvaromarin.com\/\",\"name\":\"www.alvaromarin.com\",\"description\":\"Blog sobre spam, sistemas antispam y correo electr\u00f3nico\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"http:\/\/www.alvaromarin.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"es\"},{\"@type\":\"Person\",\"@id\":\"http:\/\/www.alvaromarin.com\/#\/schema\/person\/287057c6a545a612badd5caa00bfd0bf\",\"name\":\"Alvaro Mar\u00edn Illera\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"http:\/\/www.alvaromarin.com\/#\/schema\/person\/image\/\",\"url\":\"http:\/\/1.gravatar.com\/avatar\/d260aa4421f4ceb816fe98ba240bec2b?s=96&d=mm&r=g\",\"contentUrl\":\"http:\/\/1.gravatar.com\/avatar\/d260aa4421f4ceb816fe98ba240bec2b?s=96&d=mm&r=g\",\"caption\":\"Alvaro Mar\u00edn Illera\"},\"url\":\"http:\/\/www.alvaromarin.com\/author\/admin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Caen los \"captcha\"s de Yahoo, MSN y Gmail - www.alvaromarin.com","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/","og_locale":"es_ES","og_type":"article","og_title":"Caen los \"captcha\"s de Yahoo, MSN y Gmail - www.alvaromarin.com","og_description":"El mes pasado, nos enter\u00e1bamos de que el captcha de Yahoo hab\u00eda sido \u00abroto\u00bb seg\u00fan un grupo de investigaci\u00f3n ruso que facilitaba incluso el software que lo \u00abrompe\u00bb. Desgraciadamente, no se puede ver el c\u00f3digo fuente :( : split@debian:\/tmp\/CaptchaServ$ ls … Sigue leyendo →","og_url":"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/","og_site_name":"www.alvaromarin.com","article_published_time":"2008-02-27T14:40:58+00:00","article_modified_time":"2008-02-27T14:41:44+00:00","author":"Alvaro Mar\u00edn Illera","twitter_misc":{"Escrito por":"Alvaro Mar\u00edn Illera","Tiempo de lectura":"2 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/","url":"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/","name":"Caen los \"captcha\"s de Yahoo, MSN y Gmail - www.alvaromarin.com","isPartOf":{"@id":"http:\/\/www.alvaromarin.com\/#website"},"datePublished":"2008-02-27T14:40:58+00:00","dateModified":"2008-02-27T14:41:44+00:00","author":{"@id":"http:\/\/www.alvaromarin.com\/#\/schema\/person\/287057c6a545a612badd5caa00bfd0bf"},"breadcrumb":{"@id":"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/#breadcrumb"},"inLanguage":"es","potentialAction":[{"@type":"ReadAction","target":["http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/www.alvaromarin.com\/2008\/02\/27\/caen-los-captchas-de-yahoo-msn-y-gmail\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Portada","item":"http:\/\/www.alvaromarin.com\/"},{"@type":"ListItem","position":2,"name":"Caen los \u00abcaptcha\u00bbs de Yahoo, MSN y Gmail"}]},{"@type":"WebSite","@id":"http:\/\/www.alvaromarin.com\/#website","url":"http:\/\/www.alvaromarin.com\/","name":"www.alvaromarin.com","description":"Blog sobre spam, sistemas antispam y correo electr\u00f3nico","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"http:\/\/www.alvaromarin.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"es"},{"@type":"Person","@id":"http:\/\/www.alvaromarin.com\/#\/schema\/person\/287057c6a545a612badd5caa00bfd0bf","name":"Alvaro Mar\u00edn Illera","image":{"@type":"ImageObject","inLanguage":"es","@id":"http:\/\/www.alvaromarin.com\/#\/schema\/person\/image\/","url":"http:\/\/1.gravatar.com\/avatar\/d260aa4421f4ceb816fe98ba240bec2b?s=96&d=mm&r=g","contentUrl":"http:\/\/1.gravatar.com\/avatar\/d260aa4421f4ceb816fe98ba240bec2b?s=96&d=mm&r=g","caption":"Alvaro Mar\u00edn Illera"},"url":"http:\/\/www.alvaromarin.com\/author\/admin\/"}]}},"_links":{"self":[{"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/posts\/17"}],"collection":[{"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/comments?post=17"}],"version-history":[{"count":0,"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/posts\/17\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/media?parent=17"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/categories?post=17"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.alvaromarin.com\/wp-json\/wp\/v2\/tags?post=17"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}