Huge Data of Fingerprints and Facial Recognition Found on Web

The use of facial recognition, iris recognition or fingerprints — referred to as Biometric authentication; is seen by many experts as the savior of security by allowing organizations to do away with passwords.

However, on Wednesday August   privacy researchers discovered a large bank of unprotected biometric, password and other personal data open on the internet. The data, which belong to the BioStar 2 identity and access control platform, is used by companies around the world, some of the data is priceless to criminals.

Some of its products are used for physical access control to workrooms, data centres, hospitals, police stations, buildings and construction sites. A criminal could use a stolen photo to perform an internet image search and uncover more information about a potential victim.

Researchers were able to access over 27.8 million records, a total of 23 gigabytes of data, including:

  • Access t o client admin panels, dashboards, back end controls, and permissions
  • fingerprint data
  • facial recognition information and images of users
  • unencrypted usernames, passwords, and user IDs
  • records of entry and exit to secure areas
  • employee records including start dates
  • employee security levels and clearances
  • personal details, including employee home address and emails
  • businesses’ employee structures and hierarchies
  • and mobile device and OS information of custom. ;

“From a consumer perspective, high-resolution fingerprints are a dangerous data set, regardless of how the original data was intended to be used,” said Robert Capps, vice-president and authentication strategist for Vancouver-based NuData Security, a division of Mastercard. “The fact that we don’t know whether the stolen fingerprint data is full resolution or templatized, it is unclear whether the stolen biometric data will have any meaningful impact. We do know that other consumer information was made available by the vendor, and this information has the possibility of being used to access consumer accounts, including financial services accounts. 

Here is a link to the full story from Howard Solomon and IT World Canada

Contact Us Now! Complete the form below or call 1- 800 263 3433


    Recent Comments
      Copyright © 2017-2019. All rights reserved.
      WP to LinkedIn Auto Publish Powered By :