Close Menu
Indo Guard OnlineIndo Guard Online
  • Home
  • Cyber Security
  • Risk Management
  • Travel
  • Security News
  • Tech
  • More
    • Data Privacy
    • Data Protection
    • Global Security
What's Hot

Rare Werewolf APT uses legitimate software in attacks on hundreds of Russian enterprises

June 10, 2025

CISA adds flaws of Erlang SSH and RoundCube to famous exploited directory vulnerabilities

June 10, 2025

More than 70 organizations in several sectors aimed at Chinese Cyber ​​Spying Group

June 9, 2025
Facebook X (Twitter) Instagram
Facebook X (Twitter) Instagram YouTube
Indo Guard OnlineIndo Guard Online
Subscribe
  • Home
  • Cyber Security
  • Risk Management
  • Travel
  • Security News
  • Tech
  • More
    • Data Privacy
    • Data Protection
    • Global Security
Indo Guard OnlineIndo Guard Online
Home » Akirabot focuses on 420,000 sites with open spam, bypassing CAPTCHA protection
Global Security

Akirabot focuses on 420,000 sites with open spam, bypassing CAPTCHA protection

AdminBy AdminApril 10, 2025No Comments4 Mins Read
OpenAI-Generated Spam
Share
Facebook Twitter LinkedIn Pinterest Email Copy Link


April 10, 2025Red LakshmananSecurity / Cybercrimity Web -a

Open spam that is created

Cybersecurity researchers revealed details of artificial intelligence (AI) platform (AI) Akirabot This is used to spam chat on the site, sections of comments and contact forms for promote Services of questionable search engine optimization (SEO) such as Akira and ServicewrapGo.

“Akirabot aimed at over 400,000 sites and successfully spoke at least 80,000 sites since September 2024,” – Sentinelone researchers Alex Delomot and Jim Walter – Note In a report that shared with Hacker News. “The bot uses Openai to create user information based on the purpose of the web -us.”

Cybersecurity

The goals of the activity include contact forms and widgets for chat, which are present on small and medium -sized business sites, with the scope of joint content of spam generated using large Openai (LLM) linguistic models. What makes the “spreading” tool based on Python is its ability to produce content so that it can bypass the spam filters.

It is believed that the volume exchange tool has been used at least from September 2024, starting under the name “Shopbot” in that it seems to be a link to web -car using Shopify.

Over time, Akirabot has expanded its aimed trail to include sites designed using Godaddy, Wix and SquareSpace, as well as those that have common contact forms, and live chat widgets built with Reamaze.

The essence of surgery – which should create spam content – promotes the use of API Openai. The tool also offers a graphic user interface (GUI) to select the web list that needs to be navigated and set up how many of them can be directed simultaneously.

“Akirabot creates custom spam -messages for target web -styas, processing a template that contains a general message type plan that should send a bot,” the researchers said. “The template is handled by a hint directed in the API Openai Chat to create an individual information message based on the content of the site.”

Open spam that is created

The source code analysis shows that the Openai customer uses the GPT-4O-Mini model and is assigned the role of “a useful assistant that generates marketing messages”.

Another noticeable aspect of the service is that it can bypass the CAPTCHA barriers for spam on scale sites and shy away from network detections, based on the proxy service, which is usually offered by advertisers. The CAPTCHA target services consist of HCAPTCHA, RECAPTCHA and Cloudflare Turnstile.

To achieve this, the Bot web -traffick is designed to imitate the legal final user and uses different proxy -foods with SmartProxy to obscure the traffic source.

Akirabot is also customized to register its activity in a file called “Vision.csv”, which records both successful and unsuccessful spam attempts. Expertise of these files showed that more than 420,000 unique domains have been sent to date. In addition, the success indicators associated with the CAPTCHA and the proxy crop rotation are collected and located on the Cancer Telegram via API.

In response to the conclusions, Openai disabled the API key and other related assets used by the threat subjects.

Cybersecurity

“The author or authors have invested significant efforts in the ability of this bot to bypass the commonly used CAPTCHA technologies, which shows that operators are motivated to violate service providers,” the researchers said. “The use of Akirabot, the LLM generated, the contents of the spam, demonstrates new problems that AI causes spam attack sites.”

The development coincides with the advent of cybercrime tool called Xanthorox AI, which is sold as chatbot to process code generation, malware development, vulnerability and data analysis. The platform also supports voice interaction through real -time voice calls and asynchronous voice messages.

“Xanthorox AI works on five different models, each of them is optimized for different operational tasks,” Slashnext – Note. “These models are fully operating on local servers controlled by the seller rather than unfolding through a public cloud infrastructure or through open API. This local approach dramatically reduces the chances of detecting, disabling or leaking.”

Found this article interesting? Keep track of us further Youter  and LinkedIn To read more exclusive content we publish.





Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
Admin
  • Website

Related Posts

Rare Werewolf APT uses legitimate software in attacks on hundreds of Russian enterprises

June 10, 2025

CISA adds flaws of Erlang SSH and RoundCube to famous exploited directory vulnerabilities

June 10, 2025

More than 70 organizations in several sectors aimed at Chinese Cyber ​​Spying Group

June 9, 2025

Two different botnets exploit the vulnerability of the WAZUH server to launch attacks based on peaceful

June 9, 2025

Think what your IDP or CASB covers the shadow? These 5 risks prove differently

June 9, 2025

Openai prohibits chatgpt accounts used by Russian, Iranian and Chinese hacking groups

June 9, 2025
Add A Comment
Leave A Reply Cancel Reply

Loading poll ...
Coming Soon
Do You Like Our Website
: {{ tsp_total }}

Subscribe to Updates

Get the latest security news from Indoguardonline.com

Latest Posts

Rare Werewolf APT uses legitimate software in attacks on hundreds of Russian enterprises

June 10, 2025

CISA adds flaws of Erlang SSH and RoundCube to famous exploited directory vulnerabilities

June 10, 2025

More than 70 organizations in several sectors aimed at Chinese Cyber ​​Spying Group

June 9, 2025

Two different botnets exploit the vulnerability of the WAZUH server to launch attacks based on peaceful

June 9, 2025

Think what your IDP or CASB covers the shadow? These 5 risks prove differently

June 9, 2025

Openai prohibits chatgpt accounts used by Russian, Iranian and Chinese hacking groups

June 9, 2025

Operation malicious network supply software gets to NPM and Pypi ecosystems, focusing on millions worldwide

June 8, 2025

Extension of the malicious browser has infected 722 users across Latin America since the beginning of 2025

June 8, 2025
About Us
About Us

Provide a constantly updating feed of the latest security news and developments specific to Indonesia.

Facebook X (Twitter) Pinterest YouTube WhatsApp
Our Picks

Rare Werewolf APT uses legitimate software in attacks on hundreds of Russian enterprises

June 10, 2025

CISA adds flaws of Erlang SSH and RoundCube to famous exploited directory vulnerabilities

June 10, 2025

More than 70 organizations in several sectors aimed at Chinese Cyber ​​Spying Group

June 9, 2025
Most Popular

In Indonesia, crippling immigration ransomware breach sparks privacy crisis

July 6, 2024

Why Indonesia’s Data Breach Crisis Calls for Better Security

July 6, 2024

Indonesia’s plan to integrate 27,000 govt apps in one platform welcomed but data security concerns linger

July 6, 2024
© 2025 indoguardonline.com
  • Home
  • About us
  • Contact us
  • Privacy Policy

Type above and press Enter to search. Press Esc to cancel.