Lock-Screen Bypass Bug Quietly Patched In Handsets

secwatcher shares a report from Threatpost: A design flaw affecting all in-display fingerprint sensors -- that left over a half-dozen cellphone models vulnerable to a trivial lock-screen bypass attack -- has been quietly patched. The flaw was tied to a bug in the popular in-display fingerprint reader technology used for user authentication. In-display fingerprint reader technology is widely considered an up-and-coming feature to be used in a number of flagship model phones introduced in 2019 by top OEM phone makers, according to Tencent's Xuanwu Lab which is credited for first identifying the flaw earlier this year. Impacted are all phones tested in the first half of 2018 that had in-display fingerprint sensors. That includes current models of Huawei Technologies' Porsche Design Mate RS and Mate 20 Pro model phones. Researchers said that many more cellphone manufacturers are impacted by the issue. The most popular phone in the U.S. that is impacted by this vulnerability is the OnePlus 6T. "[A]ll an attacker needs to carry out the attack is an opaque reflective material such as aluminum foil," reports Threatpost. "By placing the reflective material over a residual fingerprint on the phone's display the capacitance fingerprint imaging mechanism can be tricked into authenticating a fingerprint."

D.O.A

Before theyâ(TM)ve even got a chance to release it on a large scale....

Fingerprints

[mentil]

So you're telling me that the fingerprint reader can... read a fingerprint? Le gasp!
Also, using aluminum foil to make electronics LESS secure? That's more heretical than using the Pythagorean formula to prove the existence of irrational numbers.

ummm no

They are telling you that the fingerprint reader can't discern between the fingerprint it is supposed to read and aluminum foil.

Re:ummm no

No, its using your finger print that is still on the glass from last time you unlocked it.

People should use 2 factor Authentication.... Ideally a combination, 6 digit code where it checks your fingerprint each number pressed.

Re:ummm no

Uh, not quite. It can't discern between a fingerprint it's supposed to read and the greasy reflection of a residual fingerprint. I imagine there's actually a lot of fingerprint readers that are vulnerable to this replay attack.

Re:ummm no

Yes, your phone should send a code via txt msg that needs to be typed in before it can unlock. Oh, wait...

Re:ummm no

[luvirini]

Indeed.

It is a very common and well known problem. The traditional method for many finger print readers was to blow gently on it so that the heat sensor thinks there is a finger and reads the greasy residual fingerprint.

bio-metric id is a flawed technology

Its never been very good, but they keep trying to make out its wonderful.

Re:bio-metric id is a flawed technology

[olsmeister]

It's trivially easy to pop out someone's eye after you neutralize them and use it to get you into the secure enemy facility

we are doomed

THere's a reason why I prefer a physical fingerprint scanner. Not only because they're faster but OBVIOUSLY because the under-display ones still have their flaws. ANY IDIOT should know that!

So I would like for handset-makers to STOP treating us as beta-testers! I didn't ask for it and I don't want it! And if you want me to try it out for you then either PAY me and/or give me said device for free/testing-purposes!

Interim workarounds

[Dan+East]

That's a lot better than the interim workaround they sent out, which was to never eat sticky honey buns before unlocking your phone.

I did think the fix of sending out cell phone cases with a wet wipe dispenser built into the back was clever. But then what do you do with the dirty wipes? That was starting cause litter problems.

Another recommendation to lick off the touch sensor area of the screen regularly was highly effective, but it increased the chance of catching the flu by 37%.

Re:Interim workarounds

If licking your phone increases the chance of catching the flu by 37% then clearly you already have the flu.

Get real dipshit, this is a terrible joke.

Re:bio-metric id is a flawed technology

Yeah, but severed fingers and eyeballs tend to shrink after a while and carrying a flask of formalin around is very stinky and messy.

Re:bio-metric id is a flawed technology

[burtosis]

Yeah, but severed fingers and eyeballs tend to shrink after a while and carrying a flask of formalin around is very stinky and messy.

Sounds like a market need isn't being met. Let's get a kickstarter going, there is real money to be made here.

Handsets or cell phones?

I always thought of handsets as a separate piece found on older telephones. Cell phones lack this part? If you look up handset on Wikipedia they donâ(TM)t show a cell phone in the example pictures...

Re:bio-metric id is a flawed technology

This is why I wouldn't ever use biometrics to protect so much as an expired twinkie.

I'll stick with the REAR fingerprint sensor

[p51d007]

Thank you.

Re:I'll stick with the REAR fingerprint sensor

Thank you.

You mean the shitty one you have to perfectly position your index finger on that you can't see? The one that makes you put your finger in a weird spot that it would never naturallybe in? The one that takes twice as long to unlock because you have to hold the phone, maneuver awkwardly your finger to the sensor, hold it there uncomfortably, and then once finally unlocked, you can shift your hand back to where it's supposed to be?

No, no thanks. I'll stick with fingerprint readers on the front on the bottom.

A description of the actual bug

[najajomo]

“By placing the reflective material over a residual fingerprint on the phone’s display the capacitance fingerprint imaging mechanism can be tricked into authenticating a fingerprint.”