In the wake of Alipay’s announcement that it is going to use facial recognition technology for user authentication in mobile payments, some are starting to ask if that kind of security is really enough. Dan Moren, in particular, says he has found a flaw in the system in a new Popular Science article.
Alibaba just made a huge leap forward in identity verification, moving beyond fingerprint- and eyeball-scanning to facial recognition. Founder Jack Ma took center stage at the CeBit 2015 conference in Hannover, Germany, to demonstrate Smile To Pay, Alibaba’s smartphone payment system.
Many people understand the dangers of hackers accessing webcams. A simple fix is to place a sticker over the pinhole camera lens. Perhaps lesser known is the focus of hackers and thieves on wireless cameras used for security. Internet protocol cameras, also called IP or wireless cameras, are often used to monitor homes and small businesses. Nanny cams are usually wireless also. If set up improperly or accessed in an unsecure manner, video data can become open to the public.
Google Glass is due to receive an update in 2015, and if a Google patent submitted last month is any indication, it could include a new feature to let wearers use their fingerprints, or scans of their eyes, instead of passwords on websites.
One of the major vulnerabilities of these network IP-cameras is that unless the purchaser of said network IP-caemra changes the default username and password of the camera, it can be viewed by anyone in the world. SecurityHive.com has come across a website that streams video from unsecured video cameras that employ default usernames and passwords.
A Circuit Court judge in Virginia has ruled that fingerprints are not protected by the Fifth Amendment, a decision that has clear privacy implications for fingerprint-protected devices like newer iPhones and iPads. According to Judge Steven C. Fucci, while a criminal defendant can’t be compelled to hand over a passcode to police officers for the purpose of unlocking a cellular device, law enforcement officials can compel a defendant to give up a fingerprint.
Google Chrome became the first web browser to implement support for FIDO Alliance authentication standards, opening the door for any website to deploy simpler, stronger FIDO U2F authentication to users of the world’s most popular web browser.