Google's New Captcha Is Locking Out Privacy-Focused Users

Summary

Google's evolution of reCAPTCHA, called Cloud Fraud Defense, is being criticized for potentially forcing users into Google's ecosystem. While designed to distinguish humans from AI bots on the increasingly agentic web, the new system requires Android users to have Google Play Services to verify their identity, impacting those who use privacy-focused custom operating systems like GrapheneOS. This move is seen by critics as a way for Google to discourage users from de-Googling their lives and exert more control, even though the underlying technology for hardware attestation has existed for years and doesn't strictly require Google Play Services. Previously, custom ROM users could often access services by using web browsers or other workarounds, but this new verification method, coupled with app developers blocking custom ROMs, threatens to make accessing essential services like banking more difficult for those outside the Google-approved ecosystem. This shift is argued to go against the open-source ethos of Android and is seen as a way for Google to gather more data and maintain its dominance.