No
I don’t think so
I tried watching some yt in librewolf made me do 5 captchas an i had to switch vpn location so fuck google
Scan to Verify You're Human
Submitted 4 hours ago by sidebro@lemmy.zip to mildlyinfuriating@lemmy.world
https://lemmy.zip/pictrs/image/35a458a5-fa92-457f-ac30-6aa52d286f44.avif
Comments
DrunkAnRoot@sh.itjust.works 42 minutes ago
W3dd1e@lemmy.zip 22 minutes ago
I have degoogled but YT is the only thing I’m stuck with. The monopoly is too much to overcome.
laundry861@fedinsfw.app 2 hours ago
None of these are about identifying if you’re human, they’re about identifying which human you are.
EisFrei@lemmy.world 3 hours ago
Not to excuse Google’s practices, but you can select the eye icon to continue training an AI to detect buses and bikes.
sidebro@lemmy.zip 2 hours ago
Oh, thanks for letting me know. I missed that one, as it isn’t all that clear that’s what it does.
gressen@lemmy.zip 4 hours ago
Name the offending website please.
lemmyng@piefed.ca 4 hours ago
Google. It’s their recaptcha service doing that. The QR code validation also gets rejected if you’re using a privacy oriented mobile OS like Graphene.
markz@suppo.fi 3 hours ago
At the cost of conditioning people into following orders from random qr codes
dieTasse@feddit.org 4 hours ago
you mean it was google.com? Or on which website was this recaptcha?
wander1236@sh.itjust.works 4 hours ago
It looks like a Cloudflare interstitial. I also don’t think sites get to choose which challenge types show up in reCAPTCHA, so this is on Google.
fizzle@quokk.au 3 hours ago
Isn’t the site choosing to use recaptcha?
sidebro@lemmy.zip 2 hours ago
archive.is in this case
psx_crab@lemmy.zip 4 hours ago
Man i will nope out if this website so quick.
Maxxie@piefed.blahaj.zone 2 hours ago
I dont understand how and why is the phone involved in this check. I assume its a link to a website that authenticates you (probably google), but why not open it in the browser its alread at? Like what recaptcha was already doing for the past decade?
Im so confused
IphtashuFitz@lemmy.world 59 minutes ago
A few years ago I was given a technical deep dive into Akamai’s bot detection systems. One area they were quite focused on were bots impersonating mobile devices, and in particular mobile apps. It’s commonplace for attackers to try to mimic the behavior of mobile apps because it often provides more direct access to the data they’re looking for than trying to scrape websites.
To counter this threat Akamai developed a library for their customers to incorporate into their apps. This library collects a bunch of haptic data from the mobile device, such as the tilt sensors, accelerometers, finger taps/swipes on the screen, and other available data. It then encrypts it and sends it along to Akamai along with the data the app sends. Akamai then analyzes that haptic data and uses it as part of their bot detection analysis.
It is VERY difficult for a computer to mimic the truly random way a mobile device moves in space, or the way your fingers tap/swipe on a screen. If you were asked to draw a straight line from the upper left corner to the bottom right corner of your smartphone, not only would it not be perfectly straight but it would be quite fluid in its randomness. Writing a computer program to simulate that would be very tough. You’re far more likely to get lots of short straight lines with jagged angles than something that looks like a human drew it. And computer algorithms can quickly analyze this sort of data and return a confidence score indicating if it appears to have been created artificially or not.
So my guess is that when that QR code is scanned it will launch a Google app that will collect some similar haptic data and send it off to Google along with a unique id for that captcha. Google will then quickly analyze that haptic data to determine if you’re a bot or not.
Maxxie@piefed.blahaj.zone 41 minutes ago
Ohh, I’ve never thought about phone authentication being superior due the amount of sensors it has. Thanks for explaining, it makes a lot of sense (and I hate it)
ambitiousslab@feddit.uk 2 hours ago
I think they can use remote attestation on the mobile device to prove that it’s a physical device. They do that through Google Play Services or whatever the equivalent is on iOS. So, for instance, scanning the QR code on a custom ROM like lineage or GrapheneOS doesn’t work.
snooggums@piefed.world 1 hour ago
They want to force interaction with your phone so they can identify who you are.
45o3b@lemmy.ml 4 hours ago
I’ll get hate for referencing a solution that involves AI, but this looks promising: github.com/Captcha-Sonic/CaptchaSonic-Extension
lemmyman@lemmy.world 58 minutes ago
Lmao so the captchas don’t even do anything anyway. Except harass us.
AssaultPepper@lemmy.dbzer0.com 3 hours ago
This is a good use of AI.
muhyb@programming.dev 2 hours ago
Eye for an eye
MonkderVierte@lemmy.zip 4 hours ago
Recaptcha users will experience some visitor losses.
Hubi@feddit.org 2 hours ago
Not justifying this by any means but you can just click on the eye icon at the bottom to get the regular captcha.
snooggums@piefed.world 1 hour ago
Vague option is vague.
MrSoup@lemmy.zip 3 hours ago
I see phishing opportunity here
Luisp@lemmy.dbzer0.com 2 hours ago
Scan to get hacked
NeatNit@discuss.tchncs.de 4 hours ago
… what?
Stopwatch1986@lemmy.ml 8 minutes ago
Doesn’t clicking on the headphones switch to an audio test like with regular captcha? That’s what I do and it works first time instead of getting an endless number of images when I use VPN. The words you enter don’t even have to be 100% correct.