Hackers have hacked the fingerprint reader Samsung … – 01net

01net

on 04/23/15 at 19.40

<- start r & eacute;! social networks - block up buttons 649 />/ ->

<- beginning belly article -> <- top image block: forc & eacute; e agrave;! 300px wide ->

Ask her finger to unlock the screen with a Samsung Galaxy S5 is handy. But it can also be risky, as shown by security researchers Tao Wei and Zhang Yulong, the FireEye society. Interviewed by Forbes, they explain have found a way to intercept fingerprints directly from the biometric reader, without having to hack the “safe zone” (Trusted Zone) in which the smartphone stores biometric data of the user.

The two experts will detail their hack tomorrow morning at 9 am (ET San Francisco). However, they have already announced that to collect fingerprints, all the attacker needs to have is a root access privilege. Which is not very complicated. “Every time you touch the biometric reader, the attacker can steal your fingerprint. You get all the data, and from these data you can generate image footprint “, says Zhang Yulong to Forbes.

This vulnerability does not concern the power on Android 5.0 or higher. For others, it is advisable to make an update as soon as possible. Samsung has been alerted by the researchers but has not yet released patch.

This is not the first time that security fingerprint is shown the finger (so to speak). Last December, the Starbug hacker showed how to retrieve fingerprints in public spaces, with simple cameras. In September 2014, the company had SRLabs managed to fool the biometric reader for iPhone 6 with a fake finger created from wood glue.