Abusing legitimate challenge & response services (such as #Google's reCAPTCHA) or deploying customized fake CAPTCHA-like validation. Mass phishing and grayware campaigns have become more sophisticated, using evasion techniques to escape detection by automated security crawlers. Fortunately, when malicious actors use infrastructure, services or tools across their ecosystem of malicious websites, we have a chance to leverage these indicators against them. #cyber #phishing #threats

https://unit42.paloaltonetworks.com/captcha-protected-phishing/