SafeUM
Home Blog Services Download Help About Recharge

Axarhöfði 14, 110 Reykjavik, Iceland

Iceland - 2015
SafeUM
Blog
Services
Download
Help
About
Recharge
Menu
Archive
TOP Security!
30 Dec 2014

Fingerprints can be stolen with only a camera

One hacker says he has developed a way to copy fingerprints using a common digital camera.

Jan Krissler, a member of Europe's oldest hacker collective, the Chaos Computer Club, said he accomplished such a feat at the Chaos Computer Conference on Saturday.

His demonstration included creating, he claims, a digital copy of a fingerprint of Germany's federal minister of defense, Ursula von der Leyen, using commercially available software called VeriFinger. He said he had a photographer snap high-resolution photos of von der Leyen's fingers while she was at a presentation in October – standing nine feet away from the official. Krissler said he wasn't able to verify von der Leyen's fingerprint was accurate, but he was still confident it was a workable copy. "I have tried it with my own finger under similar circumstances (same camera, same distance)" he said in a statement.

Von der Leyen's office declined to comment. A representative said she was unaware of the demonstration. Krissler's presentation potentially calls into question the efficacy of fingerprint scanners as a security measure. While they have been around since the 1990s in consumer technology, it was Apple's move to include a fingerprint reader, which it calls Touch ID, into the iPhone 5S that revitalized the idea of using biometric readers.

Samsung and HTC quickly followed by adding fingerprint readers in select smartphones. The reader replaces the need to enter a code to unlock a device or, in the case of mobile-payments system Apple Pay, verify a purchase. While several hackers demonstrated the susceptibility of fingerprint readers to faked fingerprints soon after Touch ID's launch, those techniques always have required physical access to the fingerprint -- until now. Apple and Synaptics, which makes fingerprint readers used by Samsung and other hardware manufacturers for smartphones and laptops, were not available for comment.

This isn't Krissler's first tangle with fingerprints. He was one of the first to demonstrate how to fake a fingerprint with wood glue to fool the iPhone 5S. "We hope that this finally puts to rest the illusions people have about fingerprint biometrics," Chaos Computer Club spokesperson Frank Rieger said in a statement at the time. "It is plain stupid to use something that you can't change and that you leave everywhere every day as a security token."

Since then, researchers have shown that Apple has not fixed the vulnerability to faked fingerprints used on the iPhone 6 or 6 Plus. On the other hand, having access to a fingerprint does not immediately make a device vulnerable. Phones and tablets secured by fingerprint readers still require physical access to the device to be unlocked, and at least on iPhones with Touch ID, after two days of non-use the phone will require the owner to enter the passcode to unlock the device – not just the fingerprint. "After this talk, politicians will presumably wear gloves when talking in public," Krissler said in a public statement.

Tags:
hackers trends Germany
Source:
CNet
2257
Other NEWS
3 Jul 2020 safeum news imgage An encrypted messaging service has been infiltrated by police
4 May 2020 safeum news imgage Two-Factor Authentication ​What Is It and Why You Should Use It
12 Dec 2019 safeum news imgage Encryption is under threat - this is how it affects you
4 Nov 2019 safeum news imgage Should Big Decisions Be Based on Data or Your Intuition?
7 Jun 2018 safeum news imgage VPNFilter malware infecting 500,000 devices is worse than we thought
4 Jun 2018 safeum news imgage Hackers target Booking.com in criminal bid to steal hundreds of thousands from customers
1 Jun 2018 safeum news imgage Operator of World's Top Internet Hub Sues German Spy Agency
30 May 2018 safeum news imgage US says North Korea behind malware attacks
29 May 2018 safeum news imgage Facebook and Google targeted as first GDPR complaints filed
25 May 2018 safeum news imgage A new reason to not buy these cheap Android devices
24 May 2018 safeum news imgage Flaws in smart pet devices, apps could come back to bite owners
23 May 2018 safeum news imgage Google sued for 'clandestine tracking' of 4.4m UK iPhone users' browsing data
21 May 2018 safeum news imgage LocationSmart reportedly leaked phone location data onto the web
18 May 2018 safeum news imgage The SEC created its own scammy ICO to teach investors a lesson
17 May 2018 safeum news imgage Thieves suck millions out of Mexican banks in transfer heist
All news
SafeUM
Confidential Terms of Use Our technologies Company
Follow us
Download
SafeUM © Safe Universal Messenger

Axarhöfði 14,
110 Reykjavik, Iceland

Iceland - 2015