Samsung Galaxy S8's iris scanner hacked with a printed photo and contact lens

Samsung logoSamsung Galaxy S8 comes with "one of the safest ways to keep your phone locked" - iris-based authentication. This system is, however, extremely easy to hack, as proven by a group of hackers in Germany.

The attack is extremely basic and doesn't even require any type of hacking skills. All you need is a digital camera, a laser printer, and a contact lens.

Called the Chaos Computer Club, the German hackers group figured that if you take a picture of the phone owner's face, print it on paper, superimpose the contact lens and hold the image in front of the Galaxy S8, you can bypass the security measures. The photo you take doesn't even have to be a close-up, although the hackers admit that using night-shot mode or removing the infrared filter does help.

"The Samsung Galaxy S8 is the first flagship smartphone with iris recognition. The manufacturer of the biometric solution is the company Princeton Identity Inc. The system promises secure individual user authentication by using the unique pattern of the human iris," reads the group's post. "A new test conducted by CCC hackers shows that this promise cannot be kept: With a simple to make dummy-eye the phone can be fooled into believing that it sees the eye of the legitimate owner."

Dirk Engling, spokesperson for the CCC, advises users who care about the data on their phones to keep using the traditional PIN-protection since it is safer than any alternative using body features.

Samsung Galaxy S8's iris scanner hacked with a printed photo and contact lens

More worrying than having the ability to get into someone's phone is the fact that Samsung also announced the integration of the iris authentication feature for its payment system "Samsung Pay," which means that a successful attacker could also get access to the phone owner's mobile wallet with just a few easy tricks.

That being said, Samsung's cool new feature is just that - "cool." As proven by CCC, it brings no real protection against someone who really wants to get into your phone.

Source: Softpedia

Tags: Galaxy S8, hackers, Samsung, security, smartphones

Add comment

Your name:
Sign in with:
Your comment:

Enter code:

E-mail (not required)
E-mail will not be disclosed to the third party

Last news

Galaxy Note10 really is built around a 6.7-inch display
You may still be able to download your content
Facebook, Messenger and Instagram are all going away
Minimize apps to a floating, always-on-top bubble
Japan Display has been providing LCDs for the iPhone XR, the only LCD model in Apple’s 2018 line-up
The 2001 operating system has reached its lowest share level
The entire TSMC 5nm design infrastructure is available now from TSMC
The smartphone uses a Snapdragon 660 processor running Android 9 Pie
The Samsung Galaxy A5 (2017) Review
The evolution of the successful smartphone, now with a waterproof body and USB Type-C
February 7, 2017 / 2
Samsung Galaxy TabPro S - a tablet with the Windows-keyboard
The first Windows-tablet with the 12-inch display Super AMOLED
June 7, 2016 /
Keyboards for iOS
Ten iOS keyboards review
July 18, 2015 /
Samsung E1200 Mobile Phone Review
A cheap phone with a good screen
March 8, 2015 / 4
Creative Sound Blaster Z sound card review
Good sound for those who are not satisfied with the onboard solution
September 25, 2014 / 2
Samsung Galaxy Gear: Smartwatch at High Price
The first smartwatch from Samsung - almost a smartphone with a small body
December 19, 2013 /

News Archive



Do you use microSD card with your phone?
or leave your own version in comments (15)