Feh. Lot’s of FUD and fail in this post. “The problem? Captchas don’t work anymore.” So wrong. People just need to actually start thinking about how to make good CAPTCHAs. EZ-Gimply (or spelled correctly “EZ-Gimpy”) was one of the first CAPTCHA systems. IT WAS NOT A SYSTEM FOR BRAKING CAPTCHAS. Besides, it’s very old news. Also, the article gives the impression bots can break 35% of all CAPTCHAs. The article talks about YAHOO’s CAPTCHAs… Please try to read your own references. What the hell are you using?

I want to see you make a program for these: http://ocr-research.org.ua/teabag.html (Also has a list of weak CAPTCHAs)

Sorry, for hostility, but this is the worst articles I’ve read in a while… I wonder why I am reading this anyways…

A simple name-that-object test might do well, like showing a picture of an apple, an orange and a lemon and you have to enter “apple, orange, lemon” as verification.

I don’t think just having a new verification method is going to be enough. I think the key is to mix it up a bit, have a bunch of different methods in use, and consistently roll out new ones. So far we’ve always had the same one concept for verification, and this has allowed the black hats to focus on one task: beat the CAPTCHA. If new systems employ a bunch of different methods of verification, we’ll keep them guessing. They won’t have one thing to crack, they’d be one step behind with all the different verification methods. And we can’t stop there, we should (somewhat regularly) introduce new methods as the old ones get weaker.

We’ve been lazy so far, assuming that the CAPTCHA would cover us forever. It was once considered all but unbeatable, and has now been beaten. What’s stopping the next “unbeatable” system from eventually getting beaten? We can’t be lazy, we have to take a new approach altogether, which is to not give black hats the simplicity of one system to crack.