A three-year-old attack technique to bypass Google’s audio reCAPTCHA by using its own Speech-to-Text API has been found to still work with 97% accuracy. Researcher Nikolai Tschacher disclosed his findings in a proof-of-concept (PoC) of the attack on January 2. The whole attack hinges on a research dubbed “unCaptcha,” published by University of Maryland researchers in April 2017 targeting the audio version of reCAPCHAs.
Source: https://thehackernews.com/2021/01/google-speech-to-text-api-can-help.html