Google's latest attempt to prove you are human has already been cracked. The experimental reCAPTCHA challenge, which activates a user's webcam and asks for a hand gesture, was bypassed within days by testers who fed a static stock photo through the OBS Virtual Camera. No live person, no video and no AI was required.
The Gesture Verification Test
The new check sits inside Google Cloud Fraud Defense, the platform behind reCAPTCHA on login screens, sign-up forms and checkout pages. When triggered, the browser requests camera permission and prompts the user to wave or hold up an open palm. Google's machine-learning model records a brief video and extracts hand-landmark data covering 21 finger and knuckle points, using the same landmark scheme that powers its MediaPipe hand-tracking tools.
Google's documentation states that the footage is deleted once verification completes, that no audio is recorded and that the video is never tied to a user's identity or shared with third parties. The same page adds that any data collected is used and stored under the Google Privacy Policy, so it is not entirely clear which is true or what data is collected. Users who cannot perform the gestures fall back to existing visual and audio puzzles, and the feature is optional for now.
Immediate Bypass with a Stock Photo
Following its launch, testers quickly defeated the method. Using nothing but a stock image of a person waving into an OBS Virtual Camera, they pointed reCAPTCHA at that virtual feed and cleared the challenge after a few adjustments to the image position. Because the whole sequence can be driven by a short script, gesture reCAPTCHA in its current state appears to add friction for ordinary users while offering little resistance to an attacker.
A History of CAPTCHA Failures
reCAPTCHA has been struggling with similar challenges for years. In 2024, researchers reported a 100% success rate against reCAPTCHAv2 using off-the-shelf object-detection models. Last year, an OpenAI agent was recorded clicking through a Cloudflare “I am not a robot” check while narrating each step. The hand-gesture test raises the stakes for users since a hand scan is biometric information, regardless of whether Google promises it is not harvesting your data.
Less than two weeks ago, Cloudflare, Google, Mozilla and Microsoft jointly proposed Private Access Control Tokens (PACT), a cryptographic scheme meant to replace CAPTCHA challenges with a privacy-preserving proof that a request comes from a legitimate client. The proposal comes on the back of findings that roughly 58% of global HTTP requests come from bots, a threshold Cloudflare had not expected before 2027.
“We can build a better solution that maintains strong privacy and provides a much less annoying experience for real humans using the web,” said Bobby Holley, CTO for Firefox at Mozilla, in the announcement.
Why This Matters
The hand-gesture test represents a significant escalation in the CAPTCHA arms race, but its early failure suggests that biometric verification may not be the answer. For users, the test adds an extra step that could be inconvenient and privacy-invasive. For the industry, it highlights the need for a more fundamental rethink, such as the cryptographic approach proposed by Cloudflare, Google, Mozilla and Microsoft. The growing bot problem, with 58% of HTTP requests coming from bots, demands solutions that do not compromise user privacy or trust. Google has not said whether the hand-gesture test will graduate to general availability.



