The .js also looks at the captcha, just to make sure that something, anything was written in before the page is allowed to be submitted. The second is where the captcha input is actually validated ...

Hackers are tricking people into infecting their own computers with malware thanks to a clever new verification attack that’s becoming increasingly popular.

When a web application using reCAPTCHA challenges a visitor, Google provides an image set through JavaScript code. When a visitor solves the image-based puzzle, an HTTP request is triggered.

Google wants to improve all of that with updates to reCAPTCHA, a one-click solution for telling websites that you are, in fact, a human being.

Google announced Wednesday the launch of "No CAPTCHA reCAPTCHA," which gets rid of CAPTCHAs — those complicated distorted word puzzles — and can tell you're not a robot with just one click.