Google’s reCaptcha used to identify human customers can be subverted by automation through HTTP parameter pollution according to security researcher Andres Riancho who discovered the problem.
Ryan Wilk, VP of Customer Success at NuData Security:
“As the saying goes, you cannot judge a book by its cover, but you can judge a captcha by its provider.
The use of automated tools to commit Account Takeover (ATO) and create fraudulent accounts on a massive scale is growing.
To stop this, many companies are using “freeware” captcha tools. The problem with these offerings is…”
#captcha #pluscaptcha #security