iPhone 5s Touch ID fingerprint scanner hacked?

OK, firstly let me say that this is not 100% confirmed. But it seems like the folks at Chaos Computer Club in Germany have successfully hacked the iPhone 5s Touch ID. Wow, that was fast.

Seems real to me.
According to the blog entry, the fingerprint of the enroled user is photographed with 2400 dpi resolution. The resulting image is then cleaned up, inverted and laser printed with 1200 dpi onto transparent sheet with a thick toner setting. Finally, pink latex milk or white woodglue is smeared into the pattern created by the toner onto the transparent sheet. After it cures, the thin latex sheet is lifted from the sheet, breathed on to make it a tiny bit moist and then placed onto the sensor to unlock the phone. This process has been used with minor refinements and variations against the vast majority of fingerprint sensors on the market.
So don’t worry. It is not a simple process. Fingerprint is still a good form of security for most average consumers. But if you are dealing with top secret stuff, then maybe you might want to reconsider before activating Touch ID.
And it seems like this hack meets the criteria for the crowdfund bounty to hack iPhone 5S fingerprint scanner. Let’s wait for confirmation. And let’s see if that person who pledged $10,000 rewards really pay up. I’ll update this blog entry once we get confirmation.
Update: It’s official. Touch ID has been hacked by Germany’s Chaos Computer Club. But it is a shame that the person/company that pledged $10,000 has back out and refused to pay.
Check out the video below.

Congrats to Starbug from the Chaos Computer Club. Starbug is giving away his rewards to Raumfahrtagentur, a spinoff from CCC-Berlin.

Leave a Reply

Your email address will not be published. Required fields are marked *