Well, the new Google ReCaptcha is awful, sheesh
-
Well, the new Google ReCaptcha is awful, sheesh
It's a QR code you have to scan with a "proper" device - aka with Google Services installed
Goodbye last 10 years of phishing awareness, time to scan random QRs without a thought while you are purchasing things, woo! Seriously what were they thinking?
And because it's recommended to be put in "high risk" places, people will expect them to be seen there, and so a scam/phishing QR will be so much easier to slip in.
#google #captcha #recaptcha #phishing #infosec #cybersecurity
-
Well, the new Google ReCaptcha is awful, sheesh
It's a QR code you have to scan with a "proper" device - aka with Google Services installed
Goodbye last 10 years of phishing awareness, time to scan random QRs without a thought while you are purchasing things, woo! Seriously what were they thinking?
And because it's recommended to be put in "high risk" places, people will expect them to be seen there, and so a scam/phishing QR will be so much easier to slip in.
#google #captcha #recaptcha #phishing #infosec #cybersecurity
what if someone doesnt have a smartphone..? or is currently using their phone to access something with this new captcha and doesnt have a random second device to scan QR codes off of their phone with?
even in a sunshine rainbows world where nobody did scam QRs it seems like a pretty bad idea... -
what if someone doesnt have a smartphone..? or is currently using their phone to access something with this new captcha and doesnt have a random second device to scan QR codes off of their phone with?
even in a sunshine rainbows world where nobody did scam QRs it seems like a pretty bad idea...@AutumnWyvern i had absolute WORST experience in one of these, because they posted signs saying they dont take cash, but NOTHING saying youre expected to have a smartphone with a camera, a software stack to parse a qr code into a url, and your own internet access to open that url. luckily i had my pinephone with me and a credit card (neither of which were things i necessarily carry). pinephone could scan a qr code, but luckily the audio stack was working for once and i eventually found a number to call and have them tell me the actual url over the phone, where i was able to get out after paying for an hour of parking in downtown la, all of which had been spent looking in vain for an employee on site. It felt like an extortion racket https://www.yelp.com/biz/metropolis-los-angeles-28
-
R relay@relay.infosec.exchange shared this topic
-
what if someone doesnt have a smartphone..? or is currently using their phone to access something with this new captcha and doesnt have a random second device to scan QR codes off of their phone with?
even in a sunshine rainbows world where nobody did scam QRs it seems like a pretty bad idea...@AutumnWyvern i had absolute WORST experience in one of these, because they posted signs saying they dont take cash, but NOTHING saying youre expected to have a smartphone with a camera, a software stack to parse a qr code into a url, and your own internet access to open that url. luckily i had my pinephone with me and a credit card (neither of which were things i necessarily carry). pinephone couldn't scan the code, but luckily the audio stack was working for once and i eventually found a number to call and have them tell me the actual url over the phone, where i was able to get out after paying for an hour of parking in downtown la, all of which had been spent looking in vain for an employee on site. It felt like an extortion racket https://www.yelp.com/biz/metropolis-los-angeles-28
-
what if someone doesnt have a smartphone..? or is currently using their phone to access something with this new captcha and doesnt have a random second device to scan QR codes off of their phone with?
even in a sunshine rainbows world where nobody did scam QRs it seems like a pretty bad idea...@AutumnWyvern i had absolute WORST experience in one of these, because they posted signs saying they dont take cash, but NOTHING saying youre expected to have a smartphone with a camera, a software stack to parse a qr code into a url, and your own internet access to open that url. luckily i had my pinephone with me and a credit card (neither of which were things i necessarily carry). pinephone couldn't scan the code, but luckily the audio stack was working for once and i eventually found a number to call and have them tell me the actual url over the phone, whereupon i was able to get out after paying for an hour of parking in downtown la, all of which had been spent looking in vain for an employee on site. It felt like an extortion racket https://www.yelp.com/biz/metropolis-los-angeles-28
