We already knew that the Milky Way S8's facial unlock characteristic could endure easily fooled alongside exactly a elementary photograph of the device owner, but at nowadays hackers convey also discovered a elementary agency to bypass the iris-based authentication, which Samsung wants you lot to retrieve is unbeatable.
All it took for High German hacking grouping Chaos Computer Club (CCC) to break the Milky Way S8's iris-recognition organization was zero but a camera, a printer, together with a contact lens.
The white lid hacking grouping also published a video showing how to defeat Samsung's iris scanner.
Video Demonstration — Bypassing Iris Scanner
Since the iris scanner uses infrared light, the grouping together with thence printed out a real-life sized infrared icon of 1 oculus using a Samsung printer together with placed a contact lens on the top of the printed film to render exactly about depth. And, it was done.
The Samsung Milky Way S8 immediately recognized the mare photograph equally existence a "real" human oculus together with unlocked the phone, giving hackers amount access to the phone, including Samsung Pay.
So, the hackers successfully bypassed Milky Way S8's iris-based authentication, which Samsung claims is "one of the safest ways to proceed your band locked."
"The patterns inward your irises are unique to you lot together with are virtually impossible to replicate, important iris authentication is 1 of the safest ways to proceed your band locked together with the contents private," Samsung's official website reads.Here's what Samsung said close the iris-recognition organization hack:
"We are aware of the issue, but nosotros would similar to assure our customers that the iris scanning technology scientific discipline inward the Milky Way S8 has been developed through rigorous testing to render a high degree of accuracy together with foreclose attempts to compromise its security, such equally images of a person's iris. If at that topographic point is a potential vulnerability or the advent of a novel method that challenges our efforts to ensure safety at whatsoever time, nosotros volition response equally rapidly equally possible to resolve the issue."This is non the showtime fourth dimension when CCC hacked into biometric systems. Late 2014, the grouping recreated an accurate thumbprint a fingerprint of a Germany's federal government minister of defence using a criterion photograph that could fool whatsoever fingerprint safety systems. The same technique the grouping also claimed could endure used to fool IRIS Biometric safety systems.
In March 2013, the CCC grouping managed to fool Apple's TouchID fingerprint authentication system.
So, it is a proficient reminder for people to ever stick on a strong passcode together with device encryption to secure their devices, instead of relying on biometric features, similar fingerprint scan, IRIS scan, or facial recognition, that tin eventually endure broken yesteryear a determined hacker.
