The FBI made headlines this week with a Private Industry Notice warning partners in the private sector about sophisticated hacks of MFA security systems, and BIO-key is celebrating the Bureau’s recommendations regarding biometric security. The FBI’s alarm over the issue appears to stem from hacking incidents cited in the FBI’s Internet Crime Complaint Center. These…
Thousands of iPhone users may have had their devices hacked by malicious code found in a handful of websites, according to security researchers with Google. The security vulnerability has been revealed through a new blog post from Google’s Project Zero team member Ian Beer. The post describes a small group of websites that were likely…
“The investigation is ongoing, and Suprema has committed to working with relevant regulators and other authorities, and to contacting affected parties with further information as it is found.” Suprema has formally responded to the alleged security vulnerabilities discovered in its BioStar 2 access control system, acknowledging that unauthorized security researchers were able to access sensitive…
A team of Tencent researchers has managed to get past Face ID’s liveness detection with a pair of glasses and some tape. To execute the attack, the researchers placed a strip of black tape on each lens. The tape mimics the outline of the eye, while a dot of white tape in the center imitates…
Israel’s Interior Ministry has been forced to admit that the Population Authority’s biometric database was breached in two separate incidents that occurred in 2017 and 2018. The government insists that both were “operational incidents” that did not lead to any leaks or compromise the security of the database, but the 2018 breach is still being…
“The CBP said that the subcontractor had transferred the image data to its own network, violating security rules, and that its own systems were not affected in the attack. Somewhere under 100,000 people were impacted, the agency said.” It appears that a US government subcontractor’s use of biometric border control technology has resulted in the…
The Unique Identification Authority of India once again finds itself in the position of having to explain away a purported breach of its Aadhaar biometric national ID database. This time, the issue concerns IT Grid (India), a private IT firm, which allegedly got ahold of Aadhaar data concerning 78 million citizens in the Telangana and…
Kaspersky Lab has shared the results of an investigation that has troubling implications for digital security providers, exposing a massive darknet e-shop that sells stolen digital identities. The storefront is called Genesis, and its vendors are able to copy and even create unique ‘digital masks’ – profiles associated with behavioral and device data that some…
There are a lot of moving parts to a business, and prime among them is the people who work there. So it’s no wonder that the enterprise sector has become one of the most active segments of the global biometrics market over the last several years. Identity management has always been a critical component of…
It’s a new year, but the digital threats of 2018 remain at large. Accordingly, BioCatch is once again honing in on a specific vulnerability to showcase how sophisticated security technology – namely behavioral biometrics – can be used to guard against such threats. In its latest blog post, BioCatch puts the spotlight on corporate treasury,…
“…2019 could be a year in which major hack attacks demonstrate which biometric security systems are truly effective and which are outdated, if Experian’s prediction is proven right.” Experian’s sixth annual Data Breach Industry Forecast finds biometrics in the crosshairs. Assessing the five major security threats expected for 2019, the report predicts that hackers will…
New statistics on data breaches from Australian officials suggest that “this problem isn’t going away any time soon,” suggests Gemalto. As the company’s latest blog post explains, the Office of the Australian Information Commissioner implemented its Notifiable Data Breaches scheme in late February, introducing new requirements compelling organizations to notify individuals of data breaches that…
The disturbing trends continue in Gemalto‘s latest update from its Breach Level Index, a database aimed at recording global data breaches. Gemalto has issued its findings from the first half of 2018. The good news is that, compared to the same period last year, the number of data breaches isn’t up all that much at…
“Responding to the report today, the UIDAI issued a statement in which it reaffirmed that each Aadhaar identity is linked to 10 unique fingerprints and a pair of irises, and that these biometrics are checked against the entire Aadhaar database for duplicate entries, so it is therefore ‘not possible’ to create fraudulent entries in the…
Juniper Research is predicting a significant jump in data breaches over the coming years. In a new report entitled “The Future of Cybercrime & Security”, the market research firm predicts that the number of stolen digital records will rise from an anticipated 12 billion records this year to 146 billion records in 2023 – a…
People don’t like having their identities stolen. That’s the key takeaway from new research from the University of Texas at Austin Center for Identity. The academic institution’s newly published “2018 Identity Theft Assessment and Prediction Report” highlights the emotional impact of identity theft, fraud, and online abuse, and the findings are perhaps predictable. According to…
With facial recognition technology now causing some serious consternation and controversy through its use in public surveillance, it’s now poised to grow more invasive on social media as well. The credit goes to Trustwave, which has developed a new system called Social Mapper that uses facial recognition technology to automatically identify individuals’ social media accounts.…
Earlier this month, the company behind Timehop, a social media ‘time capsule’ app that shows users their older posts, revealed that it had suffered a data breach affecting 21 million users. And while the attack was not particularly exceptional as far as data breaches go, it nevertheless offers some food for thought, as FIDO Alliance…
The Philippines’ Commission on Elections (Comelec) is insisting that voters’ biometric data was not breached in recent hack attacks against its website. The attacks occurred toward the end of last month, with Comelec’s website first being defaced by Anonymous Philippines, followed by the posting of voter data by a group called Lulzsec Pilipinas. That data…