Captcha is cracked

Captcha is cracked
26 May 2011 | | Internet, Technology

Whilst checking my morning emails, blogs and subscriptions I came across this story which could have implications for security on the web. Captcha, the security feature which asks the user to input a randomly generated word to access specific areas such as email, control panels etc, has been cracked by a piece of software developed by experts.

“Researchers have sparked fresh concerns about Internet security after cracking Captcha, the word test used to check if website users are human. In tests IT experts said they have developed software that beats audio Captchas up to 89 per cent of the time.

They warned that cyber criminals could use such a programme to get past security measures introduced by websites like Yahoo and eBay and scam the public.

The programme, called Decaptcha, beat Captcha on eBay 82 per cent of the time, Microsoft 48.9 per cent of the time, Yahoo 45.5 per cent of the time and 42 per cent of the time on Digg.

It could also cause problems for websites like Ticketmaster as touts could use automated programmes to pose as real users and get the best seats – only to sell them on at vastly inflated prices.

The researchers warned that websites using Captcha had to upgrade their security or face becoming a victim of cyber crime. The term Captcha – which stands for for Completely Automated Public Turing Test To Tell Computers and Humans Apart – was coined by Luis von Ahn and two other professors from Carnegie Mellon University in 2000.

Originally used by Yahoo email, they were designed to stop spammers from using automated programmes to send out unwanted messages to scam other people.

Captchas usually come in the form of one or two distorted words which the user must type in to prove that they are human. Users can also request that the Captcha be read out loud over the computer’s speakers, and it is here the researchers have found a vulnerability.

With just 20 minutes of ‘listening’ time to some 200 Captchas, the Decaptcha programme was able to defeat even the toughest schemes, their study found. It does this by sampling the audio and marking out what it thinks are numbers and letters based on what it has previously heard. The programme then matches the suspected character with one of the characters in its library, choosing the one that makes the best match.

‘A computer algorithm that solves one Captcha out of every 100 attempts would allow an attacker to set up enough fraudulent accounts to manipulate user behaviour or achieve other ends on a target site,’ the researchers from Stanford University and Tulane University said.

The dangers of cracked Captchas was illustrated recently by the case of three California men who used automated programmes to beat security measures and buy 1.5million tickets to Bruce Springsteen concerts and Broadway shows. The trio later sold them on to fans at a far higher price.”

How widely this will be used and how quickly the company’s respond in upgrading their security  is yet to be seen, but I would advise that you take steps to protect yourself online, its good practice regardless of the security in place.

More posts from our team


Previous Post:
Next Post:

Back to all news

Reviews2024
Five Star
Reviewed Marketing
5 gold stars
google review logofacebook review with 5 stars
"Excellent service from James at Dental Design, thank you very much for your prompt attention whenever I get in touch! Would definitely recommend to a friend" Alison Tarmey View Full Testimonial
Google reviews logo "Would definitely recommend to a friend"
5 gold stars
"As a dental practice manager I cannot recommend Dental Design highly enough. They are just brilliant at what they do. Lucy and her colleagues are just an email or a phone call away...." Emma Smith View Full Testimonial
Google reviews logo "I cannot recommend Dental Design highly enough"
5 gold stars
"Really great company to deal with. They always respond quickly and are truly reliable. I would 100% recommend, the staff are so friendly and helpful." Michelle Molloy View Full Testimonial
Google reviews logo "Really great company to deal with"
5 gold stars
"I got increased traffic and new patients applying to my surgery, once Dental Design upgraded my website. They are very professional, efficient & adaptive to new situations..." Joanna Gallop View Full Testimonial
Google reviews logo "Very professional, efficient & adaptive to new situations"
5 gold stars
"Lucy has been a star, responding to and acting upon our requests in a prompt, efficient and professional manner, as well as the rest of the Dental Design team..." Abhay Shah View Full Testimonial
Google reviews logo "I cannot recommend them highly enough"
5 gold stars
"...Since the website has been up and running Lucy Mander has been our point of contact. She has been invaluable and gone out of her way to help us, especially during COVID-19 lockdown... " Lucy Jones View Full Testimonial
Google reviews logo "Has been invaluable and gone out of her way to help us"
5 gold stars
"Thank you for all your help and support, and the provision of valuable learning aids for our patients and staff alike in these difficult times. We love the look of our practice website. Very professional!" Sandra Luck View Full Testimonial
Google reviews logo "We love the look of our practice website. Very professional!"
5 gold stars
"Dental Design stood out both in their knowledge of the industry and their professionalism and can-do attitude. All of their staff are exceptionally competent and knowledgeable..." Harvey Rook View Full Testimonial
Google reviews logo "Dental Design stood out both in their knowledge of the industry and their professionalism"
5 gold stars
"Having done extensive research into all the dental website companies, the team and package offered at dental design was unrivalled..." Neil Shah View Full Testimonial
Google reviews logo "The team and package offered at dental design was unrivalled"
5 gold stars
"The team at dental design (especially Rosie) are absolutely fantastic and are always on hand to help. They are professional, friendly and extremely efficient. Rosie always gets back..." KiKi Wilmot View Full Testimonial
Google reviews logo "absolutely fantastic and are always on hand to help"
5 gold stars
"Dental Design are fantastic to work with, our website is amazing and the support they provide is second to none. Our account manager Rosie L is a fabulous point..." Luke Lucas View Full Testimonial
Google reviews logo "Dental Design are fantastic to work with"
5 gold stars
"Having worked with the Dental Design team for the last six months, I've found them not only helpful, but friendly and approachable too. I bombard Marcus with regular..." Sophie Harper View Full Testimonial
Google reviews logo "always met with a swift and professional response"
5 gold stars
desk with branded documents