Devices and security systems are increasingly using biometric authentication to let users in and keep hackers out, be that fingerprint sensors or perhaps the iPhone's FaceID. Another method is so-called "vein authentication", which, as the name implies, involves a computer scanning the shape, size, and position of a users' veins under the skin of their hand.
But hackers have found a workaround for that, too. On Thursday at the annual Chaos Communication Congress hacking conference in Leipzig, Germany, security researchers described how they created a fake hand out of wax to fool a vein sensor.
"It makes you feel uneasy that the process is praised as a high-security system and then you modify a camera, take some cheap materials and hack it," Jan Krissler, who goes by the handle starbug, and who researched the vein authentication system along with Julian Albrecht, told Motherboard over email in German.
(Score: 2) by SomeGuy on Monday December 31 2018, @12:16PM (2 children)
Oh. I was supposed to use my *hand*? :P
(Score: 2) by RandomFactor on Monday December 31 2018, @02:21PM (1 child)
Reminder: Hand must be stationary long enough to get a reading.
В «Правде» нет известий, в «Известиях» нет правды
(Score: 2) by krishnoid on Monday December 31 2018, @11:22PM
And moving fast enough to reproduce body temperature, yet slow enough not to melt. Tough call on that one.