• MehStrongBadMeh@programming.dev
    link
    fedilink
    English
    arrow-up
    186
    arrow-down
    1
    ·
    3 months ago

    There’s a reason captchas have moved mostly image identification systems. These text-based captchas have all been defeated for years.

    • ironhydroxide@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      94
      ·
      3 months ago

      Yeah because whomever “owns” the data needs humans to train their bots, not because the image based bot detection is better than other methods.

    • TheSlad@sh.itjust.works
      link
      fedilink
      arrow-up
      86
      ·
      3 months ago

      The images are not actually the captcha. They’ve used other methods and tools to verify your authenticity, then they force you to help train their image recognition AI under the guise of it being the actual captcha. Its Distributed Forced Labor, and Google has been using captchas to do this for decades. Remeber the picture-of-two-words captcha? One word was always squiggly and the other was not. The squiggly word was the real captcha, the other word was from a scanned book and you were helping to train their OCR algorithms.

      • node_user@feddit.uk
        link
        fedilink
        arrow-up
        55
        arrow-down
        1
        ·
        3 months ago

        There used to be hoardes of sites offering free downloads, quizzes, porn etc etc. You would have to solve a captcha to get through, but they were ‘stuck’ in an infinite loop. I always believed it was being used by spammers/hackers to bypass actual captcha elsewhere on the web. Its kinda genius, offloading the work to randoms looking for free stuff…

        • hinterlufer@lemmy.world
          link
          fedilink
          arrow-up
          14
          ·
          3 months ago

          I also remember services you could pay to get your captcha solved via a browser extension. You could also register as a captcha solver there to earn a few bucks stupidly solving captchas. Although I’m not sure if they were actually legit.

        • Terrasque@infosec.pub
          link
          fedilink
          arrow-up
          6
          ·
          3 months ago

          I remember back in the day this automated downloader program… the links had a limit of one download at a time and you had to solve a captcha to start each download.

          So the downloader had built in “solve other’s captcha” system, where you could build up credit.

          So when you had say 20 links to download you spent some minutes solving other’s captchas and get some credit, then the program would use that crowdsourcing to solve yours as they popped up.

      • MehStrongBadMeh@programming.dev
        link
        fedilink
        English
        arrow-up
        6
        ·
        3 months ago

        Yeah, at this point, most forms of image identification catches have also been defeated, not quite 100% success yet, but they’re getting there

    • breakingcups@lemmy.world
      link
      fedilink
      arrow-up
      22
      ·
      3 months ago

      Funnily enough, the reason they switched to those was to use the data to train machine learning (AI) models, just like Google’s recaptcha was originally pictures of words from old, scanned books so they could transcribe all of them “for free” and train their transcription algorithms.

      • antonim@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        15
        ·
        3 months ago

        Man I miss the times when Google used to trick us into helping make knowledge more easily accessible to everyone. Now we just train fucking AI for luxury cars.

    • RonSijm@programming.dev
      link
      fedilink
      arrow-up
      9
      ·
      3 months ago

      It’s a bit weird how that actually works though…

      “Which of these pictures are traffic lights?”

      I’d hope with all the self-driving-(ish) cars coming out, any AI like that should be able to identify a traffic light, right?

      • null@slrpnk.net
        link
        fedilink
        arrow-up
        30
        ·
        3 months ago

        When you “solve” a captcha like that, you’re just helping train the AI you’re talking about.

        The stuff that determines whether you’re a not or not is based on browser information, how you interact with the page, etc.

      • driving_crooner
        link
        fedilink
        arrow-up
        12
        ·
        3 months ago

        That’s exactly what you’re doing, training the AIs to identify that.

    • SkunkWorkz@lemmy.world
      link
      fedilink
      arrow-up
      4
      ·
      edit-2
      3 months ago

      If they add audio captchas for the visual impaired then those image captchas can be circumvented. There is a Tampermonkey script on GitHub that can defeat Recaptcha by solving the audio captcha.