Researchers have cracked CAPTCHA, a program widely used to foil bots. One of the reason for the success is simiilar, flawed implementations of the CAPTCHA program. This shows how important it is to customize any off-the-shelf security system as much as possible.\n\tA team from Sanford University says their Decaptcha program was able to defeat 66 percent of captchas on Visa's Authorize.net payment site; 70 percent at Blizzard Entertainment; 42 percent on Reddit and 35 percent on Slashdot. a quarter of the ones used by Wikipedia; along with those on a handful of other sites including CNN, eBay, Digg, and Captcha.net. In fact, the only Captchas that resisted Decaptcha were those belonging to Google.\n\tCAPTCHA (Completely Automated Public Turing Test to tell Computers and Humans Apart) uses a question-and-response system to determine if it is dealing with a person or a program. \u00a0 Users have to type a piece of text that is stretched, curved, jumbled, multicolored, slanted, crossed-out, or reversed. It frequently irritates users (this one in particular) who are allegedly human and still can\u2019t decipher the text.\n\tOf course \u00a0the researchers \u2013 Elie Bursztein, Matthieu Martin and John C. Mitchel \u2013 aren\u2019t going to release their program but it is a safe bet that someone else will create their own version soon, if it hasn\u2019t been done already. (There is also an audio version of Captcha. The team cracked that earlier this year.)\n\tDespite this CAPTCHA remains a sound and useful security feature if implemented correctly, i.e. not exactly like everyone else\u2019s. By intelligently customizing the system you make it significantly harder to break. The researchers point out this is exactly why Google\u2019s Recaptcha system \u201cremains unbroken even-though it is in use for more than four years.\u201d\n\t(See Seven Ways to Make CAPTCHA Safer)\n\tThis same principle should be applied to any security system or application. Each variation you can come up means one more new challenge facing an intruder. You can\u2019t wait until you know a system or application has been broken in order to implement changes. By the time you learn about it the hackers will likely have already come and gone.\n\tEvolution shows that species thrive when they can survive in many different environments. This means each species develops variations peculiar to its own needs. That also makes each variation less susceptible to any one particular virus or infection. \u00a0Now, do you want to make it easier or harder for that virus to get you?