Security

Why Your Fingerprint Login May Not Be Safe

TouchID is a very exciting concept. To think: you can access your Android cell phone without having to deal with passwords, passcodes, picture matches, or trivia responses. Instead, you simply swipe your fingertip over the phone and log on in.

Unfortunately, fingerprint scanning may not be so safe and secure. When your biometric information is compromised, there is nothing you can do to change it. In fact, using fingerprint logins could put users at risk for identity theft. The Chaos Computer Club (CCC) revealed how Apple’s Touch ID could be easily tricked by very simple means. While this may not seem like a big deal, the application trickles down into other security issues.

Read More: Firmware Detected in Devices

If fingerprint scanning is the next big thing, what’s to stop someone from lifting your fingerprint and using it on far more than your cell phone? The CCC showed ways to work around the fingerprints — and that was back in 2004. Fast forward to 2016, and everything from tanning salons to the neighborhood gym are requiring fingerprint identification. While it’s great to think that you don’t need to worry if you forget your wallet or membership card, there’s a hidden danger.

When Yahoo had thousands of compromised email accounts, what did it do? Yahoo advised its users to change their passwords immediately. If you lose your wallet, what do you do? You call your bank, cancel your old card, and request a new one. But what happens when your biometric identity, in the form of your fingerprint, is stolen? What can you do then? Not much.

Studies (and hacker groups making a point) have repeatedly shown how these scanners can be fooled with something as simple as Play Doh. The best way to install biometrics for any company would be to include two-factor authentication. Users would need to provide more than a biometric scan. Rather, the scan would bring up a user ID that would then have to be verified with a second form of authentication. A masked user ID would help ensure a higher level of protection.

Until fingerprint login is more secure, keep your important apps away from snoops with PSafe Total. Its Applock feature provides password protection so no one can browse through your apps without your permission. What’s more — you can even protect your Facebook page, so your private messages stay that way.

PSafe Newsroom

The dfndr blog is an informative channel that presents exclusive content on security and privacy in the mobile and business world, with tips to keep users protected. Populated by a select group of expert reporters, the channel has a partnership with dfndr lab's security team. Together they bring you, first-notice news about attacks, scams, internet vulnerabilities, malware and everything affecting cybersecurity.

Recent Posts

Does Your Phone Listen to You for Ads? Myth vs. Reality

That feeling that your phone is “listening” is common, but the explanation usually has less…

57 years ago

Why Updating Android Helps Protect Your Phone, Even When Nothing Looks Different

Have you ever put off an Android update because you figured nothing would really change…

57 years ago

Your Phone Knows Where You’ve Been. Here’s Why That Matters More Than Ever

Do you know how many places your phone can remember from just one ordinary week?…

57 years ago

Does Changing Your Password Every Week Make Your Account Safer? Myth or Fact

You’ve probably heard that changing your password every week is a smart way to keep…

57 years ago

What Happens When You Tap “Allow” on an Android App?

You install a new app, open it for the first time, and the screen pops…

57 years ago

5-Minute Monthly Phone Check: What to Review on Android

You unlock your phone to answer a quick text and, without even noticing it, pass…

57 years ago