fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Microsoft Skype Challenge: Can You Solve this Puzzle 10 Times?

Microsoft Skype Challenge: Can You Solve this Puzzle 10 Times?

New Skype users report frustration after being presented with a captcha that requires them to solve a complex puzzle ten times before signing up for the service.

Tests by BleepingComputer confirmed the problematic captcha required when signing up for a Microsoft account via Skype—even after verifying your email address.

However, signing up for a Microsoft account directly was much simpler.

Also Read: What Legislation Exists in Singapore Regarding Data Protection and Security?

The struggle is real, times 10

When downloading Skype onto their device, users are prompted to either log in with an existing Microsoft account or sign up.

Should you choose to sign up for a new Microsoft account via the Skype application though, Skype presents a captcha that is complex to solve and has left many frustrated.

A captcha (“Completely Automated Public Turing test to tell Computers and Humans Apart”) is a challenge–response test used by websites and online services to check if they are interacting with a human user or a bot.

The captcha puzzle presented to those signing up for Skype, however, requires the user to keep rotating through an image with a sphere containing arrows pointed in random directions until there are “exactly 2 arrows” left, pointing directly upward.

 What’s more, the challenge has to be solved not once, but ten times!

Skype captcha
Captcha required by Skype before letting users sign up (Reddit)

BleepingComputer was able to successfully reproduce the issue when testing the signup process using a Skype client on both Apple Mac and Microsoft Windows.

Also Read: Advisory Guidelines on Key Concepts in the PDPA: 23 Chapters

The captcha presented by Skype during the Microosft account signup process to BleepingComputer took at least five minutes to get through the eighth attempt, with two more attempts left.

After submitting the captcha, we found out that we had gotten the answers wrong and had to reattempt the puzzle to figure out which part we got wrong.

At the time of our tests, BleepingComputer did not use a VPN and tested the signup process from a regular ISP connection:

captcha timed out
Captcha response solved by BleepingComputer ten times rejected

Security on steroids?

Other users report having spent half an hour on solving an alternative captcha presented by Skype.

Note, Skype’s complex captcha was presented during BleepingComputer’s tests after we had already verified a Gmail email address used for the signup process:

Email verification
Email verification when signing up for a Microsoft account (BleepingComputer)

“I had the same problem a few weeks ago and almost threw my computer out the window in frustration!” complained one Reddit user. “I think a big part of this captcha is how quickly you do it, as taking your time but getting it right still counts as a fail.”

“At this point it’s just easier to break both your arms,” stated another Reddit user.

“Somewhere, a psychology PhD student is currently preparing their thesis about the level of frustration people are willing to put up with to create free online accounts,” says a third one.

Equally interesting is the fact that when signing up for a Microsoft Account directly via Microsoft’s website, the captcha challenge presented is much simpler:

Microsoft account captcha
Captcha presented by Microsoft when signing up for a Microsoft account (BleepingComputer)

All it requires is, picking an elephant among the different illustrations presented, just twice, and you’re all set.

BleepingComputer reached out to Microsoft to understand what causes this issue and we were told the company is investigating.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us