{"id":27258,"date":"2025-01-17T18:51:39","date_gmt":"2025-01-17T10:51:39","guid":{"rendered":"https:\/\/www.1ai.net\/?p=27258"},"modified":"2025-01-17T18:51:39","modified_gmt":"2025-01-17T10:51:39","slug":"%e5%9b%bd%e5%ae%b6%e7%bd%91%e7%bb%9c%e5%ae%89%e5%85%a8%e9%80%9a%e6%8a%a5%e4%b8%ad%e5%bf%83%e9%a2%84%e8%ad%a6%e6%96%b0%e5%9e%8b%e7%8a%af%e7%bd%aa%e6%89%8b%e6%b3%95%ef%bc%9a%e5%88%a9%e7%94%a8-ai","status":"publish","type":"post","link":"https:\/\/www.1ai.net\/en\/27258.html","title":{"rendered":"National Cybersecurity Notification Center warns of new criminal tactic: using AI to bypass graphic-based authentication mechanisms"},"content":{"rendered":"

January 17, 2012 - The NationalCybersecurity<\/a>Briefing Center today informed that recently, Guangxi Guilin public security net security department work found that Guilin City, Yangshuo County, an attraction ticket reservation platform there are traces of abuse. Upon investigation.The \"scalper\" gang used the platform's CAPTCHA component flaws to carry out illegal ticket-snatching behavior.<\/strong>Guangxi Guilin public security net security department through the investigation successfully arrested the \"scalping\" gang. Guangxi Guilin public security network security department through the investigation, successfully arrested the \"scalper\" gang, seized a number of computers and other tools. At the same time found thatSome graphical CAPTCHA components have outstanding risks and are very easy to be utilized by unscrupulous elements.<\/strong>, reminding the majority of units and individuals to take greater precautions.<\/p>\n

\"09c30d85j00sq8bfc001hd000cx00d1p\"<\/p>\n

1AI<\/a>Case-specific information is attached below:<\/p>\n

I. Status of cases<\/p>\n

2024 During the National Day holiday, the Guangxi Guilin public security network security department worked to discover that theA large number of netizens reflected that it was \"difficult to find a ticket\" for a certain attraction, and travel agencies and \"scalpers\" colluded to release advertisements on behalf of ticket-snatching on social media platforms<\/strong>The Guangxi Guilin public security network security department attaches great importance to, immediately set up a task force to carry out investigations.<\/p>\n

After analyzing the running logs of this ticket reservation platform, it was found that there wereHigh frequency and uninterrupted duration of appointment behavior<\/strong>Obviously by the \"plug-in\" software abuse traces. Through further investigation, successfully locked the implementation of crime \"scalper\" gang, the task force went to Beijing, Chongqing, Sichuan, Guangxi arrested 12 suspects, seized a number of computers and other tools. After verification, the \"scalper\" gang using external softwareIllegally grabbed approximately 10,000 tickets during the 2024 Fourth of July vacation<\/strong>.<\/p>\n

ii. modus operandi of the crime<\/p>\n

It was found that the suspects pre-empted the plug-in software in theEnter the name of the visitor, cell phone number and other necessary information, the platform release tickets when the plug-in software automatically initiates a request to grab tickets<\/strong>The software has been analyzed and found to have a technical core. Upon analysis, the technical core of the plug-in software was found to beGraphical Class Validation Mechanism for Automated Quick Answer Ticket Reservation Platforms<\/strong>.<\/p>\n

Under normal circumstances, visitors reserving tickets need toManually select randomly arranged patterns to pass validation.<\/strong>The suspects advance by initiating frequent registration requests.Downloaded tens of thousands of captcha images of the same type<\/strong>, manually label the correct answers in the validation images, and then use the labeled data toTraining a highly accurate image recognition model<\/strong>, utilizing the model when grabbing ticketsAutomatically and quickly deduce the correct CAPTCHA<\/strong>.<\/p>\n

III. Risk Warning<\/p>\n

The graphic class CAPTCHA components involved in this case are used in a wide range, coupled with the current popularity of image recognition tools easily accessible, the relevant network application verification mechanism is cracked (bypass) the risk of outstanding. The Spring Festival holiday is approaching, in order to prevent the recurrence of similar cases, prompted the relevant units and individuals to strengthen prevention:<\/p>\n