-->
UnlabelledTechnology - Google News

Saturday, August 10, 2019

author photo

Technology - Google News

Apple's iPhone FaceID Hacked In Less Than 120 Seconds - Forbes

Posted: 10 Aug 2019 12:01 AM PDT

Security researchers attending the annual Black Hat hacker convention in Las Vegas have managed to bypass the iPhone FaceID user authentication in just 120 seconds.

The way they did it may well surprise you, but should it worry you as well?

Black Hat?

Black Hat is always guaranteed to produce some exciting security headlines, and this year's convention certainly hasn't disappointed. Everything from a demonstration of how WhatsApp messages can be intercepted and manipulated to Microsoft confirming it had paid hackers $4.4 million (£3.6 million) for example. However, for sheer ingenuity and that "WTF" factor, what the researchers from Tencent did is pretty hard to beat.

What did the researchers do?

The researchers were able to demonstrate that they could bypass the FaceID user authentication and access the iPhone of the victim in less than 120 seconds. To do so, they needed three things: a pair of spectacles, some tape and, erm, a sleeping or unconscious iPhone user.

The researchers found a flaw in the liveness detection function of the biometric authentication system that is used by Apple for unlocking an iPhone using FaceID. During the session, Threatpost reported, the researchers said that "Liveness detection has become the Achilles' heel of biometric authentication security as it is to verify if the biometric being captured is an actual measurement from the authorized live person who is present at the time of capture."

This is to get around the problem that so many biometric ID systems suffer from with hackers bypassing the authentication with the help of wax hands or 3D-printed heads. It's clever stuff and will prevent someone from unlocking an iPhone while the owner is asleep, for example.

Except it doesn't. Assuming you can follow the hacking process demonstrated by Tencent, which is relatively unlikely in most scenarios. Not that the method isn't unusual and has that wow-factor, but rather it would be a difficult one to pull off in the real world. It would be a lot easier to access a TouchID-protected iPhone using the finger of a sleeping victim.

All these kinds of hacks require physical access to both the device and the unresponsive owner. Somewhat ironically, I don't think you need to lose too much sleep over this one.

How does the FaceID hack work?

The researchers discovered that the FaceID liveness process wouldn't extract full 3D data from the area around the eye if it recognizes the owner is wearing glasses. Instead, it looks for a black area for the eye with a white point upon it for the iris. So the researchers created a pair of spectacles with white tape covered by black tape in the center. A hole in the black tape was allowing the "white point" to be visible to FaceID. This is enough to fool FaceID and unlock the iPhone

But it's also the last time you can use the word "simply" in connection with the hack. Sure, the researchers showed how they placed the "X-glasses" onto a "sleeping" victim, unlocked the iPhone and managed to transfer money using mobile payment. But you try and do that in the real world.

It's not impossible by any means, but it does require a sleeping or unconscious victim who happens to have an iPhone protected with FaceID and who won't wake up when you are stuffing a pair of specs onto their face.

Let's block ads! (Why?)

We asked, you answered: you're holding onto your phone forever - USA TODAY

Posted: 10 Aug 2019 04:11 AM PDT

Jefferson Graham USA TODAY

Published 7:18 AM EDT Aug 10, 2019

We asked consumers and they couldn't have been clearer. They will never, ever pay $1,000 for a smartphone. They'll hold onto their phones until the dial tone truly goes dead. 

But of course, they do buy the new ones. Apple is on track to sell over 200 million iPhones this year. 

But Apple is selling fewer phones than they used to, with sales expected to drop 15% this year, according to CFRA Research. 

And it looks like wireless carriers got the consumer message, loud and clear. One thousand dollars? No thanks. Monthly payments to ease the pain? Certainly. 

This week, Samsung released shiny new updates to the Note line, with starting prices for the Note 10 and Note 10+ going for a hefty $950 and $1,100, respectively. 

But just try to find those prices listed in the ads for Verizon Wireless, T-Mobile, Sprint or AT&T. You will, but trust us, they are very hidden. 

The carriers haven't gone back to the days where you'd pay a $200 fee and commit to a 2-year contract, but the a two-year lease is front and center again. You'll need a magnify glass to see Grover Cleveland or ten Benjamin Franklins anywhere noted anywhere.

Buying the new Note 10 sounds downright affordable. Just $26.04 a month (over 18 months) from Sprint, $31.67 monthly from AT&T for 30 months ) or $20.83 monthly from Verizon over 24 months, which has the best deal in town. It will shave $450 (or $18.75 monthly) off the price of the Note with a trade-in.

Maybe. 

The list of qualifying phones for the trade-in deal runs the gamut from recent iPhones and Galaxy's to the now discontinued, once upon a time $350 entry-level iPhone, the SE. 

Many of you who have held onto your iPhone 6s devices for 5 years will no doubt be checking out these deals, which sound pretty good. Just read the fine print carefully.

For instance, see how AT&T stretches you to 30 months for your payment, vs. 18 months for Sprint? (Poor Sprint--it's set to be swallowed up by T-Mobile, so who knows if this deal will continue to be supported once and if the deal gets final approval.)

T-Mobile offers a monthly price on the Note at $39.59 for two years, and will knock off $300 in trade-ins from recent iPhones and Galaxys and up to $200 for the old SE.

Again, the operative words here are "up to." Verizon noted it would give "up to" $100 for an iPhone 6 strade-in, but when I went through the motions to test it, I ended up with an offer of $84. (Which is better than I got with the online sales site Gazelle, which offered just $66. 

In just a few weeks, Apple is expected to unveil its new iPhone lineup, a collection of three phones that analysts think will be priced identically to last year's editions: $749, $999 and $1,099.

And I've got to wonder: will Apple take the wireless carriers lead and just skip showing the retail price altogether in their pricing strategy? I wouldn't be surprised to see Apple just give you the monthly and trade-in price period. 

After all, as you can tell from these tweets, consumers are just not in the mood to fork over $1,000 for phones anymore. And I don't blame them. 

In other tech news this week

Disney+ and ESPN+, Disney, which is set to debut a new streaming service in November called Disney +, said this week it would bundle Hulu and ESPN+ for a combined $12.99 monthly, a savings of $5. The Disney+ is $6.99 a la carte. Disney CEO Bob Iger said this is Disney's biggest launch in years. 

Siri no longer listening to you. Apple's Siri personal assistant, which came under heavy criticism when the company admitted it sometimes listened to our queries, said this week it would refrain from doing so in the future. See! This is what you get from having a free press. Once Bloomberg noted the practice and raised concerns, Apple backtracked. 

Great deals: Speaking of wireless deals, low-cost wireless carrier Mint Mobile has a new one. Buy three months of $20 service and get three months free. The fine print is that you get 8 gigabytes of data to use, as opposed to unlimited. But as the major carriers offer unlimited in the $70-$80 range, this is one hefty discount. The offer expires September 9. 

This week's Talking Tech podcasts

Google brings podcasts to search results

Disney+ ESPN

New: your daily text from me

Public transportation and apps

Vizio's state of the art cutting the cord TV

—Subscribe to the Talking Tech newsletter: http://technewsletter.usatoday.com

—Sign up for my daily Talking Tech text: https://projecttext.com/jeffersongraham

—Listen to the daily Talking Tech podcast on Apple Podcasts, Spotify and Stitcher

—Follow me (@jeffersongraham) on Twitter, Instagram and YouTube. 

Let's block ads! (Why?)

'iPhone 11 Pro' Rumored to Be Name of High-End 2019 iPhone With Triple-Lens Camera - Mac Rumors

Posted: 10 Aug 2019 06:15 AM PDT

Apple is widely expected to release three new iPhones in the fall, and an anonymous Twitter account with a proven track record has suggested that at least one of the models will have "Pro" in its name, such as "iPhone 11 Pro."


The tweet comes from a mystery account named CoinX, which has accurately leaked several details about upcoming Apple products over the past year, including the names of the iPhone XS, iPhone XS Max, and iPhone XR before anyone else, the removal of the headphone jack on 2018 iPad Pro models, and much more.

CoinX's accurate leak about the 2018 iPhone names:


In this case, CoinX phrases the tweet as a rhetorical question, but the account has a perfect track record so far with all of its leaks:

For what it's worth, MacRumors received the following anonymous tip on August 4: "The square camera iPhone will be called the iPhone 11 Pro. This is fact." It would be a disservice to our readers to simply pass along any unsubstantiated tip we receive, but it is now worth mentioning in light of this tweet.

This could mean the 2019 lineup will include the iPhone 11 and iPhone 11 Pro, and perhaps the iPhone 11R, but we still don't know for sure.

Apple is widely expected to unveil three new iPhones next month, including two higher-end 5.8-inch and 6.5-inch OLED models and one lower-end 6.1-inch LCD model. Rumored features include triple-lens rear cameras on the higher-end models, larger batteries, two-way charging of AirPods, and much more.

Read our 2019 iPhones roundup below for a recap of all rumors to date.

Let's block ads! (Why?)
Next article Next Post
Previous article Previous Post

This post have 0 komentar


EmoticonEmoticon

Next article Next Post
Previous article Previous Post