Mobile friendly web design is a necessity for any website. Why? Google punishes a website’s page rank if the domain isn’t mobile responsive. That’s because 51% of all internet traffic is now from mobile devices – and growing. This is something we maintain as a priority when refining FunCaptcha. Here’s three big reasons why FunCaptcha is the mobile CAPTCHA.


Built to Scale

FunCaptcha is built on HTML5, meaning it works on any platform. Desktop, Tablet, Mobile Phone – FunCaptcha is built with flexibility in mind. This means installing FunCaptcha is easy and maintaining your website’s mobile compatibility is even easier.

Mobile Friendly

With our mini-game based approached to security, domains are secured through a format that’s inherently mobile friendly. No hard to read text – just drag ‘n’ drop or tap-to-rotate games that can block the bots and welcome the humans.

Secure Conversion

The above means that websites can focus on refining their offering, whether it be engaging content or a valuable day to day service. FunCaptcha allows brands to rest easy knowing they’re online assets are protected but also welcoming for their intended audience.


Next time you’re needing to protect your site, please your users and ensure your website is ready for the mobile revolution, head to our homepage and install FunCaptcha. It only takes a matter of minutes.

The purpose of a poll is simple: learn about the interests of your audience. Whether you’re a politician campaigning for election, a multinational entertainment brand or a respected news organization, knowing what your audience is thinking is invaluable. For example, the CNN poll below asked its audience who they think won a recent democratic debate. The information provided allowed CNN’s editors to both display and form a narrative around the current Presidential election. On top of this, a poll allows users to see how their opinion stacks up with other users in their online community.


While the convenience of Internet polls is evident, the anonymity that comes with them should have organizations asking an important question: how reliable are they at reflecting genuine opinion? With FunCaptcha – very.

Accuracy is king

A news organization’s reputation goes hand-in-hand with the accuracy of the information they relay. If a news outlet consistently provides inaccurate information, they will soon find themselves losing their audience. Online polls are no different – the threat of bots swarming a poll (or petition, in Uber’s case) and distorting the data is very real. By blocking these bots, FunCaptcha can ensure that only genuine humans are engaging with their polls and thus, ensure the accuracy of their data.

Legitimacy is longevity

If polls are accurate and authentic, those who participate in them feel as though their opinion has contributed to a wider discussion. If a poll is swarmed with bots, false votes and muddled data, this leads to genuine participants feeling dissatisfied about their contribution. People don’t want to feel as though their input has been wasted. If a brand can’t garner genuine audience engagement, their polls are meaningless and the brand itself is thrown aside as unreliable. For news organizations especially – it’s a death sentence.

High Conversion, Better Engagement

Maintaining both the accuracy and legitimacy of an online brand’s polls is crucial but in the past, the only way to do this was with outdated, ugly CAPTCHAs. FunCaptcha not only maintains a supreme level of security but it can also offer a much higher level of engagement. It can be branded to fit a website’s aesthetic and it doesn’t annoy genuine users who actively want to engage with the brand.

Online polls are a valuable resource and FunCaptcha allows them to stay that way.

On a recent flight, we got to experience the joy of stable inflight WiFi. It was terrific – we could keep up to date with our team via Slack, respond to important emails and watch all the random YouTube videos we wanted. The future is now! The only downside? The CAPTCHAs the airlines were relying on.


Accessing the WiFi is a pretty simple process: passengers choose their WiFi package, sign in or sign up and then are asked to complete a CAPTCHA to prove they’re a human. The CAPTCHA itself is like any other text CAPTCHA: not appealing or even effective. We’ve explained before how text CAPTCHAs are outdated, annoying and simply don’t work.

Why does inflight WiFi need a CAPTCHA?

Firstly, to block malicious, automated systems from accessing a plane’s WiFi. This is a legal requirement under the Communications Assistance for Law Enforcement Act, or CALEA. The law requires telecommunications providers to allow authorities access to important information under certain circumstances – mainly threats to national security. In the case of inflight WiFi, it’s important to protecting the integrity of a plane’s limited network. If automated systems can abuse the network, a number of possibilities open up, ruining the experience for genuine users.

The second reason is to prevent passenger devices from automatically connecting and chewing through their pre-purchased data. Everyone at one point or another has had a device automatically update itself or downloads immense amounts of data – all by accident. A CAPTCHA would prevent devices from automatically connecting and burning through their owner’s precious WiFi data.

Why FunCaptcha?

Relying on an ugly and ineffective text CAPTCHA for both of the reasons above is not a wise move – here’s how FunCaptcha is the superior alternative.

Privacy Protection

In a recent article, Wired magazine raised a valid point: what information could be recorded/transferred by an inflight wifi service? That’s something FunCaptcha doesn’t do. We don’t care who you are – just that you’re not a robot. We don’t store personal identifying information nor do we send that information on to any 3rd party. You complete a mini-game and we verify you, that’s it.

Easy Access

FunCaptcha is what airlines need to ensure their WiFi offerings are secure yet streamlined. Our completion rates are higher than traditional CAPTCHAs and in order to provide the best user experience, airlines need a CAPTCHA that’s easy for humans but impossible for bots.

Visual Appeal

FunCaptcha has the ability for full aesthetic customization. From full brand packages to just a subtle change in colours, an airline can replace distorted text or images with a CAPTCHA that is visually engaging, not confronting.

Full Support

We’re the only company on the planet dedicated to providing a better CAPTCHA experience. Airlines can rest easy knowing their customers are seeing a CAPTCHA that has a team of experts continuously improving it.

FunCaptcha is what airlines need to ensure their WiFi offerings are both protected and streamlined.

Over a drink at a recent meetup event, a usually savvy online developer seemed to think that two-factor authentication is a valid replacement for CAPTCHA. We’ve had a number of conversations like this recently and it’s troubling. It illustrates that even professionals in the online security field do not understand the inherent differences in how the two technologies should be used. Essentially: they solve very different problems.


Two-factor authentication (referred to as 2FA) is a security process that combines two security components to properly identify an individual looking to carry out a task – usually when logging into a secure account or performing a specific action within a secure account. For example, your bank may send an approval code to your phone when you send a large money transfer. It is used to doubly verify that you are authorised to perform that action.

It does not prove that there is a human completing this action. In fact, two-factor authentication is quite easy to bypass with bot automation. Our white hat partners have illustrated just how easy it can be to acquire the phone numbers necessary to automate abuse.

Take this example: you’re a ticket scalper looking to buy tickets in bulk for an upcoming show. If there is no CAPTCHA, all you would have to do is login once to each account (complete the 2FA if required, or automate that also) and then have your bots use those accounts to snap up as many tickets as possible. Without a CAPTCHA preventing the bots from accessing the actual ticket sales pages, 2FA is no help at all to preventing the tickets being purchased faster than humans can complete the same actions.

But CAPTCHA is a test to provide human verification and a good CAPTCHA will prevent bots from automating such actions.


Other concerns when considering 2FA as a CAPTCHA alternative are conversion and privacy. Not everyone will want to provide a phone number, or install an authentication app for each new website they visit. Conversion rates plummet when 2FA is implemented, which is bad for business.

So please… When considering security  for your web business, ensure that you understand the primary strengths of all available options. Two-factor authentication is not a valid replacement for CAPTCHA, whenever privacy, conversion or human verification are priorities.


How much of your audience is fake? This is the question Bloomberg Business recently asked in a terrific piece called “The Fake Traffic Schemes That Are Rotting The Internet”. It discussed how ad tech companies around the world are employing deceptive tactics (i.e. click fraud) to generate inflated traffic numbers for their clients in an attempt to generate revenue. It’s a scathing piece that outlines a clear issue that many in the digital industry have known for years: something needs to change for digital advertising to grow into the powerhouse it was predicted to be.

However, I was slightly disappointed that it didn’t go into detail regarding potential solutions being worked on around the globe. Yes, big brands are taking digital ads in-house, using their own software and cutting out potentially harmful middle-men but that’s where the article stops short. It doesn’t provide much information in the way of potential solutions to tactics such as click fraud and I felt I needed to help expand on this topic a little further. In short: providing verified, authentic and engaged human traffic is something that FunCaptcha specializes in. In fact, we’ve already discussed the repercussions of NHT (Non-Human Traffic), so allow this to be an extension of that discussion.

The security aspect of FunCaptcha is second to none – we are the most secure CAPTCHA service on the Internet. We protect over 35,000 websites, blocking 1,500,000 bot attempts every day and in doing so, help keep online communities, forums and websites safe. This is great for web hosts and users alike – but what does this mean for advertisers? It means that every impression we serve is verified as a human.

If we serve an ad, it will be to a human.

This is made possible by how we’ve implemented advertising into our CAPTCHA system. Other CAPTCHA providers show advertising before the security process is completed. This may result in inflated impressions but as the Bloomberg piece points out, is it all human? This is actually a key distinction to make and something I’m proud of: the only way for a FunCaptcha to serve an ad impression is for our security process to first be completed – which is something only a human can do. If we serve an ad, it will be to a human. Every time.

Digital advertising is an industry that is beginning to see much-needed innovation and I’m proud to say that FunCaptcha is at the forefront of that innovation.

Thanks for reading,
Kevin Gosschalk
CEO and Co-Founder

Thanks to Bloomberg Business for a great article and specifically, the writers of the piece: Ben Elgin, Michael Riley, David Kocieniewski, and Joshua Brustein.


In the first video of our new series, FunCaptcha Answers, resident CAPTCHA expert Matthew Ford explains how an emerging trend is indicating that the new reCAPTCHA is starting to function a lot like the old reCAPTCHA.

This is something we began to notice when many users on Twitter started seeing pictures of what looked like cabbages – over and over. It appears that an increasing number of users are being presented with a more advanced challenge, where they’re asked to choose the pictures that contain the suggested phrase. This challenge is rather difficult and many users are getting frustrated. See an example below.

ReCAPTCHA_cabbage 2

Watch the above video for a look at what this means, how it’s happening and subscribe for more!

We’ve said it again and again – text CAPTCHAs don’t work.

Despite this, some of the biggest companies on the internet still rely on them – for example, AOL. We noticed they were relying on a simple text CAPTCHA to guard their sign-up process and felt we needed to put it to the test.

Unsurprisingly, and like every other text CAPTCHA today, it failed to prevent automation.

AOL___Sign_Up_croppedAOL’s text CAPTCHA in action.

Why does this CAPTCHA, and many like it, fail to protect websites like AOL? It’s simple: because they’re so easily broken by anyone who is interested in doing so.

Simple thresholding algorithms can remove the background noise and then you can run the text through an Optical Character Recognition engine. By doing this users with malicious intent can automate sign-ups and flood forums/websites with spam.





Once you run OCR over the image, you get something similar to the following image, where you can simply select the text from the image:


The software required to do all of this is easily available (we won’t be linking it here). For security purposes, this just isn’t acceptable.

If this sort of security is so unreliable, why then do websites (even some of the biggest in the world), still rely on it? It’s simple: for the last decade, there had never been a reliable CAPTCHA alternative that didn’t annoy users. FunCaptcha was born out of this necessity for innovation.

The CAPTCHA is a technology that is solved almost 300,000,000 times daily. FunCaptcha both streamlines this process for real humans but doesn’t sacrifice security. For unreliable security assets to be phased out, large brands and companies must lead the way in advocating change and FunCaptcha is the viable CAPTCHA alternative that can be that change.

Get FunCaptcha

FunCaptcha streamlines the CAPTCHA experience all over the Internet – so we streamlined our install process as well. We’ve given the FunCaptcha API an overhaul, simplifying the experience and making it even easier to get up and running on your website.


You’ll be able to find the API at our Setup page as the “Standard (Recommended)” option, pictured below. It’s the default option that we suggest you use as it speeds the process up and allows a faster installation.

First: insert the code seen below into the relevant area on your site.


Second: select the backend language relevant to your website and perform the required steps. Below is the PHP process.


That’s it! It’s important to note that on some websites, depending on what they’re built with, using the relevant plugin might be your best option for installation. We support the top CMSes including WordPress, Drupal and Joomla! as well as many forum software options, including vBulletin and XenForo. Have a look through our plugin list to find which one you need.

If you have any queries or just need a helping hand getting installed, don’t hesitate to Contact Us – or use the Live Chat at the bottom right of your page!

Dear Internet,

Your prayers have been answered – with Doge CAPTCHA.

So tears

Doge taketh many forms and has been the much superior face of the Dogecoin cryptocurrency since 2013. But with such spam, Dogecoin has suffered at the hands of bad CAPTCHAs that present unreadable text, novella-length questions and no trackpad support. That ends, today.

Introducing, VERRRRRRY wow Doge CAPTCHA by FunCaptcha.


Critics have applauded it as a CAPTCHA solution that “doesn’t totally suck” and “slays the opposition,” citing many popular cryptocurrencies that have championed the technology. But don’t take their word for it…try it below!

So what are you waiting for? To the moon!

Get FunCaptcha


Inspired by our good friends over at Reddit – see the original thread

If you fancy yourself as a digital Muhammad Ali, you should check out this news story doing the rounds today. A British man is deploying a faithful old trick that works well with corporate email that seems impossible to unsubscribe from – he’s re-routing their mailouts to the originators’ own corporate addresses as a spam prevention tactic. This of course won’t work if they have a simple opt-in feature, but it’s a fun story worth a read and it reminded us of the famous boxing strategy to win a match by using your opponent’s own punching power to wear them out.

How to play Spammer rope-a-dope.


The really interesting part of the article to us was the fact that email spam is in fact decreasing, and has dropped to it’s lowest proportionate level since 2005 according to Symantec.

“Phishing rates and email-based malware were also down, suggesting that attackers are targeting people indifferent ways, such as through messaging apps and social networks.”

This is 100% true according to what we see every day, with site spam growing markedly. FunCaptcha stops hundreds of millions of spam bots every month, and currently protects over 30,000 websites from automated abuse. And it is increasing, partly because email spam is no longer profitable.

If only we could send the web spam bots back to their spam overlords as well instead of simply blocking them with FunCaptcha… Leave it with us, Rope-A-Dope is going up on the development team whiteboard!

Our Clients