AfterDawn: Tech news
AfterDawn > News > Apple's Touch ID broken by hacker group?

Apple's Touch ID broken by hacker group?

Written by James Delahunty @ 22 Sep 2013 6:52 User comments (3)

Apple's Touch ID broken by hacker group?

The Chaos Computer Club has claimed that its "biometrics hacking team" has broken Apple's Touch ID, just days after the release of the iPhone 5s.
Apple has touted the security of its fingerprint scanner system that can be used to unlock an iPhone 5s and for iTunes purchases. It said that the system cannot be beaten as easily as some other fingerprint scanners, which have found to be particularly weak.

In fact, Apple even discounted the possibility that a severed finger could be used.

Enter the Chaos Computer Club, a group many of you will have heard of before. It now claims that just days after the iPhone 5s release, it can already spoof Apple's Touch ID "using easy everyday means."

"A fingerprint of the phone user, photographed from a glass surface, was enough to create a fake finger that could unlock an iPhone 5s secured with TouchID," CCC claims.

"This demonstrates – again – that fingerprint biometrics is unsuitable as access control method and should be avoided."



A hacker with the nickname Starbug claimed all the group had to do was ramp up the resolution of its fake. "As we have said now for more than years, fingerprints should not be used to secure anything. You leave them everywhere, and it is far too easy to make fake fingers out of lifted prints."

The group has posted a video which allegedly shows the spoof working.



More information: Chaos Computer Club.

Tags: Apple iphone 5s Chaos Computer Club
<Tablets will overtake PC sales in two years, Tim Cook says >Grand Theft Auto V crashing older Xbox 360s
Previous Next  

3 user comments

122.9.2013 21:04
Morreale
Send private message to this user
Senior Member

Meh, I'm not surprised. I think probably 99% of 5S owners are safe from this ever happening to them though.

I doubt many will really use this feature anyways once winter comes along. Not worth sacrificing gloves over lol

223.9.2013 13:49
dEwMe
Send private message to this user
Senior Member

Err I gotta say if anyone wants my info that bad they can have it or could have gotten it by other means. I am not an Apple fan nor would I ever own an iPhone. I am just saying going to all that work to get the average person's info? Prob not worth it...A fake finger? REALLY? LOL... So maybe not ironclad protection but good enough for your average user and certainly better than that password they are using variations of on 20 or 30 sites across the internet.

327.9.2013 19:31
plazma247
Send private message to this user
Member

But wasnt it suppose to be an uber secure sub dermal biometric device.. the hack suggests it not at all.

Comments have been disabled for this article.

Latest news

Sony suspends memory card sales because memory chips are simply not available Sony suspends memory card sales because memory chips are simply not available (28 Mar 2026 6:49)
Sony has announced that it is temporarily suspending the sale of memory cards used in mobile phones and digital cameras, among other things. The company states that the reason is problems with the availability of memory chips.
Austria plans to ban social media for under 14 year olds Austria plans to ban social media for under 14 year olds (28 Mar 2026 6:17)
Austria is planning to ban social media for children under 14. The reform aims to protect children from harmful effects and addictions, but at the same time, it is problematic from a privacy perspective.
TP-Link urges users to update their routers - several vulnerabilities patched TP-Link urges users to update their routers - several vulnerabilities patched (26 Mar 2026 1:56)
Serious security vulnerabilities have been discovered in several TP-Link router models, for which patches were released at the end of March 2026. The company urges users to update their router software immediately.
Google: The feared Q-Day is now expected to happen in 2029 Google: The feared Q-Day is now expected to happen in 2029 (25 Mar 2026 4:32)
Google has advanced its estimate of when current forms of encryption will become insecure. The moment is called Q-Day, or Quantum Day, when the computational power of quantum computers will be sufficient to break currently used encryptions.
OpenAI shuts down its AI video service Sora OpenAI shuts down its AI video service Sora (24 Mar 2026 6:28)
OpenAI has decided to shut down Sora, its AI video creator, just months after its release. The decision is due to issues such as copyright problems and the deepfake phenomenon.

Reviews

Review: Roborock Saros Z70 - robot vacuum with an arm Review: Roborock Saros Z70 - robot vacuum with an arm
In out in-depth review of Roborock Saros Z70 we put the robot vacuum through a 3 month test period, where we observed its work in normal home. The sci-fi -like arm of Z70 was a little bit disappointing, due its limited functionality.
Roborock Saros 10 review - Great, but not perfect Roborock Saros 10 review - Great, but not perfect
We tested Roborock Saros 10 robot vacuum for more than two months in order to see whether it is really worth its hefty price tag. The mopping, self-emptying Saros 10 was mostly great, even perfect. But its object avoidance was bit disappointing.
1 user comment
Roborock S8 MaxV Ultra review - obstacle avoidance doesn't work as it should, otherwise almost perfect robot vacuum Roborock S8 MaxV Ultra review - obstacle avoidance doesn't work as it should, otherwise almost perfect robot vacuum
We put the Roborock S8 MaxV Ultra through a very, very long review process. The $1800 mopping robot vacuum is almost perfect, but its obstacle avoidance was surprisingly bad, considering the price - and compared to its competitors.

News archive

Sections:

Follow us:

© 1999-2026 AfterDawn Oy. All rights reserved
Back to Top ⇧
AfterDawn is powered by Powered by UpCloud