Samsung Galaxy S8 iris scanner cracked
The two hackers have managed to bypass the iris-recognition on Samsung's Galaxy S8
Samsung's Galaxy S8 has only been available for less than a month but two German hackers have cracked the smartphone's biometric security feature.
The two hackers have managed to bypass the iris-recognition feature using a fake eye created from a collection of images taken with a digital camera in night mode. A contact lens was then used to match the bend in the eye.
A video of the hack was posted by the Chaos Computer Club, and its spokesperson Dirik Engling stated that a traditional pin may actually be safer.
"The security risk to the user from iris recognition is even bigger than with fingerprints, as we expose our irises a lot. If you value the data on your phone - and possibly want to even use it for payment - using the traditional pin-protection is a safer approach than using body features for authentication."
He also stressed that it is possible to hack the iris scanner with a high-resolution picture, however Samsung disagreed and said such a hack requires a combination of circumstances.
"It would require the unlikely situation of having possession of the high-resolution image of the smartphone owner's iris with IR camera, a contact lens and possession of their smartphone at the same time. We have conducted internal demonstrations under the same circumstances, however, [and] it was extremely difficult to replicate such a result," said Samsung.