Hand Gesture Verification – Google Cloud Fraud Defense
Google Cloud's new Hand Gesture Verification feature for reCAPTCHA allows users to verify they are human by performing a simple hand gesture in front of their device's camera, enhancing fraud defense without requiring text input or complex challenges.
Background
- Google's reCAPTCHA (the "I'm not a robot" checkbox and image-selection puzzles) is now integrated into Google Cloud's Fraud Defense suite, a broader anti-abuse platform for businesses.
- This new "hand gesture verification" asks a user to make a specific hand shape (e.g., a peace sign) in front of their device camera — not for biometric identification, but as a live-ness check that is harder for bots or scripted attacks to fake.
- It runs entirely on-device (using the phone's camera and local ML), so no video or hand images are sent to Google's servers, addressing privacy concerns.
- The feature is aimed at high-risk actions like account logins, payments, or promotions where traditional CAPTCHAs are either too friction-heavy or too easily bypassed by automated tools.