FB pixel

Chinese researchers reveal method to bypass biometric fingerprint scanners in smartphones

Chinese researchers reveal method to bypass biometric fingerprint scanners in smartphones
 

Chinese security researchers from X-Lab security at Tencent challenged fingerprint security in a presentation at the GeekPwn 2019 conference in Shanghai, writes Forbes. The team claims it can hack into almost any Android or iOS device in just about 20 minutes by using what appears to be a fairly simple fingerprint hacking method.

Without giving too many details about the actual technical approach to the audience, researchers used a smartphone to take a photo of fingerprints left on a glass and ran the photo through an app they developed. They were then able to gain access into three different phones equipped with different scanning technologies, one each with capacitive, optical, and ultrasonic sensors. A pair of event fingerprint scanning machines were also defeated in the demo. According to Forbes, a 3D printer was likely used to recreate the fingerprint. The hardware behind the experiment costs as little as $140, according to Chen Yu, one of the team members.

While the method requires the attacker to have physical possession of the individual’s phone after collecting a clear enough latent print, by using latent prints the method requires less cooperation than a fake print hack against the OnePlus 7 Pro’s optical sensor carried out earlier this year, which requires a mold to be made from the target’s finger.

South Korean tech company Samsung has recently addressed a major security vulnerability in the biometric fingerprint recognition function of the S10 smartphone. A number of users reported that a cheap screen protector made it simple to bypass the ultrasonic in-display fingerprint security system and unlock the smartphone with any fingerprint. Soon after, the company issued a software update.

Article Topics

 |   |   |   |   |   | 

Latest Biometrics News

 

Biometric identity verification gets caught up in great expectations and politics

The next generation of biometric identity verification collides with the politics of digital identity in the most-read articles of the…

 

Todd Morris named NEC NSS President as Dr. Kathleen Kiernan retires

Todd Morris is the new President of NEC National Security Systems (NEC NSS). Morris succeeds Dr. Kathleen Kiernan, who is retiring…

 

ISO’s mDL standard can’t guarantee issuer trustworthiness

The fear that the server retrieval capability supported by the ISO/IEC 18013 standard for mobile driver’s licenses (mDLs) could be…

 

One app, two app, three app, four: DECTA study shows users have ‘wallet fatigue’

While some see the concept of a “15-minute city” as sinister, advocates say they just don’t want to go very…

 

Stop ghost students stealing college financial aid with biometric liveness

The Associated Press recently documented a vast and fast-growing fraud on the U.S. education system in which scammers use AI…

 

Russia launching digital ID ‘super-app’ inspired by Chinese WeChat

Russia is introducing a new digital identity “super-app” that will combine messaging, government and private services, e-signatures and digital IDs….

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Biometric Market Analysis

Most Viewed This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events