Google's latest attempt to prove you are human has already been cracked. The experimental reCAPTCHA challenge, which activates a user's webcam and asks for a hand gesture, was bypassed within days by testers who fed a static stock photo through the OBS Virtual Camera. No live person, no video and no AI was required.

What You Need to Know

Google's reCAPTCHA system has long struggled to distinguish humans from bots. The new hand-gesture test maps 21 hand coordinates using machine learning but adds friction for users. Its quick bypass via a stock image underscores the difficulty of creating effective bot detection. The test also raises privacy questions because it involves scanning hand geometry, a biometric marker.

The Gesture Verification Test

The new check sits inside Google Cloud Fraud Defense, the platform behind reCAPTCHA on login screens, sign-up forms and checkout pages. When triggered, the browser requests camera permission and prompts the user to wave or hold up an open palm. Google's machine-learning model records a brief video and extracts hand-landmark data covering 21 finger and knuckle points, using the same landmark scheme that powers its MediaPipe hand-tracking tools.

Google's documentation states that the footage is deleted once verification completes, that no audio is recorded and that the video is never tied to a user's identity or shared with third parties. The same page adds that any data collected is used and stored under the Google Privacy Policy, so it is not entirely clear which is true or what data is collected. Users who cannot perform the gestures fall back to existing visual and audio puzzles, and the feature is optional for now.

Immediate Bypass with a Stock Photo

Following its launch, testers quickly defeated the method. Using nothing but a stock image of a person waving into an OBS Virtual Camera, they pointed reCAPTCHA at that virtual feed and cleared the challenge after a few adjustments to the image position. Because the whole sequence can be driven by a short script, gesture reCAPTCHA in its current state appears to add friction for ordinary users while offering little resistance to an attacker.

A History of CAPTCHA Failures

reCAPTCHA has been struggling with similar challenges for years. In 2024, researchers reported a 100% success rate against reCAPTCHAv2 using off-the-shelf object-detection models. Last year, an OpenAI agent was recorded clicking through a Cloudflare “I am not a robot” check while narrating each step. The hand-gesture test raises the stakes for users since a hand scan is biometric information, regardless of whether Google promises it is not harvesting your data.

  • reCAPTCHAv2 bypass: Researchers achieved 100% success using object detection models.
  • OpenAI agent bypass: An AI agent clicked through a Cloudflare challenge without being detected.
  • Gesture reCAPTCHA bypass: Testers passed with a static stock photo and OBS Virtual Camera.

Less than two weeks ago, Cloudflare, Google, Mozilla and Microsoft jointly proposed Private Access Control Tokens (PACT), a cryptographic scheme meant to replace CAPTCHA challenges with a privacy-preserving proof that a request comes from a legitimate client. The proposal comes on the back of findings that roughly 58% of global HTTP requests come from bots, a threshold Cloudflare had not expected before 2027.

“We can build a better solution that maintains strong privacy and provides a much less annoying experience for real humans using the web,” said Bobby Holley, CTO for Firefox at Mozilla, in the announcement.

Why This Matters

The hand-gesture test represents a significant escalation in the CAPTCHA arms race, but its early failure suggests that biometric verification may not be the answer. For users, the test adds an extra step that could be inconvenient and privacy-invasive. For the industry, it highlights the need for a more fundamental rethink, such as the cryptographic approach proposed by Cloudflare, Google, Mozilla and Microsoft. The growing bot problem, with 58% of HTTP requests coming from bots, demands solutions that do not compromise user privacy or trust. Google has not said whether the hand-gesture test will graduate to general availability.