Printed from http://www.electronista.com

Snapchat adds Captcha to account creation, beaten within 24 hours

updated 06:36 am EST, Thu January 23, 2014

Snapchat Captcha defeated by 100 lines of code created in 30 minutes

A coder has claimed to have bypassed Snapchat's verification system, within a day of its launch. The verification system, which attempts to prevent spammers from quickly creating accounts via a Captcha-style method, was circumvented by less than 100 lines of code and approximately 30 minutes of work, strongly suggesting that the system is not fit for purpose.

Snapchat's authentication system asks new users to select a number of images from a collection of nine, but only the images containing the Snapchat ghost. Upon seeing reports from CNET about the new system, Steve Hickson created a program that automated the recognition of the ghost template. Though Hickson admits the system is not perfect, he writes "if it takes someone less than an hour to train a computer to break an example of your human verification system, you are doing something wrong."

Output from Steve Hickson
Output from Steve Hickson's Snapchat Captcha code


The security of its users is an ongoing issue for Snapchat, with approximately 4.6 million usernames and numbers being leaked from the service through an API vulnerability earlier this month. The company apologized, updating the app allowing users to opt out of linking their phone number to their username, and pledging to try and prevent similar security lapses in the future.



By Electronista Staff
Post tools:

TAGS :

toggle

Comments

  1. sammaffei

    Fresh-Faced Recruit

    Joined: 09-04-04

    Guess they should have taken that $3 Billion from Facebook. D'oh!

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Sponsor

Recent Reviews

Linksys EA6900 AC Router

As AC networking begins to makes its way into more and more devices you may find yourself considering an upgrade for your home network ...

D-Link DIR-510L 802.11AC travel router

Having Internet access in hotels and other similar locations used to be a miasma of connectivity issues. If Wi-Fi was available, it wa ...

Ooma Office small business VoIP

Voice over IP (VoIP) services have been around for a very long time. Only recently has the implementation become a bit more robust, al ...

Sponsor

toggle

Most Commented

 
toggle

Popular News