Windows Hello Fingerprint Security Bypassed on Major Laptop Brands

November 22, 2023 at 07:08 PM

•

1 min read

Windows Hello Fingerprint Security Bypassed on Major Laptop Brands — Photo: BleepingComputer

TL;DR Summary

Security researchers have discovered vulnerabilities in the embedded fingerprint sensors of Dell Inspiron, Lenovo ThinkPad, and Microsoft Surface Pro X laptops, allowing them to bypass Windows Hello fingerprint authentication. The researchers successfully exploited security flaws in the fingerprint sensors made by ELAN, Synaptics, and Goodix, using man-in-the-middle attacks and custom Linux-powered devices. Despite Microsoft's Secure Device Connection Protocol (SDCP), which was designed to protect the communication between the fingerprint device and the host, the researchers found that SDCP was not enabled on two out of three of the targeted laptops. They recommend that vendors enable SDCP to enhance the security of biometric authentication solutions.

Topics:top-news #biometric-authentication #fingerprint-authentication #laptop-security #security-flaws #technology #windows-hello

Share this article

Windows Hello auth bypassed on Microsoft, Dell, Lenovo laptops BleepingComputer
Microsoft's Windows Hello fingerprint authentication has been bypassed The Verge
Windows Hello fingerprint security tests failed on top three laptops 9to5Mac
New Flaws in Fingerprint Sensors Let Attackers Bypass Windows Hello Login The Hacker News
Security Researchers Have Bypassed Windows Hello Fingerprint Login How-To Geek

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

78%

483 → 104 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights