Skip to main content
The VergeThe Verge logo.The Verge homepage
The VergeThe Verge logo.

Hacker beats Galaxy S8 iris scanner using an IR image and a contact lens

Hacker beats Galaxy S8 iris scanner using an IR image and a contact lens

/

Eye spy

By Chaim Gartenberg / @cgartenberg

|

Share this story

If you buy something from a Verge link, Vox Media may earn a commission. See our ethics statement.

Based on name alone, the futuristic iris-scanning feature on the Galaxy S8 sounds like it would be the most secure way to lock your phone. Hacker Jan Krissler, who goes by the name Starbug, shows in a recent video that, despite the impressive technology in unlocking your phone with your eyes, the security system can be beaten with a relatively low-tech hack.

As the video shows, Starbug is able to take a infrared picture of a person’s face using the night mode setting on a regular point and shoot camera. Print it out on an ordinary laser printer and it fools the camera by placing a contact lens over the image to give it the appearance of an actual human eye. While it certainly is a little more effort than, say, circumventing the S8’s facial recognition with a picture, the hack is certainly simple enough for the average person to do on their own.

It’s also not Starbug’s first impressive hack of this nature. In the past, he’s re-created the fingerprint of Germany’s defense minister Ursula von der Leyen using pictures of her fingers, and was one of the first to bypass Apple’s TouchID with fake fingerprints just days after it launched.

It’s a good reminder that while phones like the Samsung Galaxy S8 offer numerous ways to secure your phone — a traditional passcode, a swipe pattern, a fingerprint scan, facial recognition, and more — even the most secure biometric locks can eventually be broken by a determined hacker.

More from Tech

Today’s Storystream

Feed refreshed 13 minutes ago Yes, it happened again.

J
The Verge
Jacob Kastrenakes13 minutes ago
YouTube’s biggest defense against TikTok: money.

The company is going to start giving creators a share of ad revenue when commercials play between YouTube Shorts. The platform’s relatively generous payments are a large part of its rich creator culture, and now we’ll find out if they’re enough to lure short-form creators away from TikTok.


YouTube is turning on the money hose for Shorts — and taking on TikTok for real

David PierceSep 16
E
Twitter
Elizabeth LopattoAn hour ago
Signal, the encrypted messaging app, gets free promotion from Twitter’s lawyers.

Last year, Elon Musk tweeted “Use Signal,” leading to a spike in new users. Twitter’s lawyers said in a footnote in a previous filing that Musk had been messaging with investor Marc Andreessen of a16z on Signal about a Twitter investment. The problem for Twitter’s discovery process is that Signal messages can be set to auto-delete; Musk’s lawyers maintain he doesn’t ordinarily use Signal for business. Now, there’s a sealed motion that.... contains Musk’s Signal tweet. 👀


Gaming

Nvidia announces next-gen RTX 4090 and RTX 4080 GPUs

Tom Warren3:24 PM UTC
Google

Google search can help you buy train tickets in select countries

Jasmine Hicks36 minutes ago
Apple

Apple makes the battery indicator better in new iOS 16.1 beta

Jay PetersTwo hours ago
A
Alex CranzTwo hours ago
If you’re into the minimalist PC build then Nvidia’s latest GPUs might present a problem.

Nvidia finally announced the 40-series—specifically the more expensive and more powerful 4090 and 4080. But big power means these are some big cards and that could be a problem for PC builders who prefer smaller, minimalist looks for their PCs. Builders at the /sffpc subreddit, that focuses on small form factor pc builds, are already worried.


4090 FE is extremely thick. The amount of ITX cases being able to fit a 90 series cafd is even lower. from sffpc

Must Reads

  1. A Tesla Megapack battery is on fire at a PG&E facility in California

    Umar ShakirSep 20

  2. Here’s how Microsoft is rolling out its first major update to Windows 11

    Tom WarrenSep 20

  3. Hulu’s Hellraiser reboot is full of puzzles and promise in new trailer

    Andrew WebsterSep 20

  4. The original Portal is getting a free ray-tracing update in November

    Cameron FaulknerSep 20

  5. Motorola’s new budget phones look surprisingly nice

    Allison JohnsonSep 20

Tech

YouTube will let creators monetize videos with licensed music

Mia SatoTwo hours ago
B
The Verge
Barbara KrasnoffTwo hours ago
A lot of people seem to agree that lock screen widgets are one of the best new features of iOS 16.

So we put together a how-to on customizing your iPhone’s lock screen and wallpaper with widgets and design options, and even linking them to Focus modes. It’s easier than you’d think.


How to personalize your iOS 16 lock screen with widgets and wallpaper

Allison Johnson and Barbara KrasnoffTwo hours ago
Apple

How to personalize your iOS 16 lock screen with widgets and wallpaper

Allison Johnson and Barbara KrasnoffTwo hours ago
M
Youtube
Mitchell ClarkTwo hours ago
Apple replaced the iPhone 14 Pro’s SIM slot with a block of plastic.

iFixit’s teardown of the iPhone 14 Pro gives us a look at what’s behind the Dynamic Island, and does a good job of demonstrating why the regular iPhone 14’s removable back glass is so nice.

We also get to see what’s taken the place of the SIM slot: a bare PCB, and a plastic spacer. So useful!


Welcome to the new Verge

Revolutionizing the media with blog posts

Nilay PatelSep 13
Netflix

The Midnight Club’s first trailer looks like The Fault in Our Stars but with vengeful ghosts

Charles Pulliam-MooreTwo hours ago

Tech

See all Tech
Science

A Tesla Megapack battery is on fire at a PG&E facility in California

Umar ShakirTwo hours ago
Google

Motorola’s new budget phones look surprisingly nice

Allison JohnsonTwo hours ago
Policy

American Airlines reveals data breach — two months after it was discovered

Mitchell ClarkTwo hours ago
Gaming

Netflix’s new Sonic show will be released this winter

Jay PetersTwo hours ago
A
The Verge
Andrew WebsterTwo hours ago
Deathloop is out on Xbox Game Pass today.

If you subscribe to Xbox’s Game Pass service, you should definitely check out Arkane’s Deathloop, which is out now. It was one of my favorite games of last year when it debuted on the PS5 and PC, mixing extremely satisfying action with an intricate story about time loops. Here’s the full list of the latest Game Pass releases.


Deathloop is an intricate mystery that also happens to be an amazing action game

Andrew WebsterSep 13, 2021
Tech

Hulu’s Hellraiser reboot is full of puzzles and promise in new trailer

Andrew Webster5:01 PM UTC

Podcasts

  1. Can software simplify the supply chain? Ryan Petersen thinks so

    Nilay PatelSep 20

  2. Music labels are incorporating old songs into new songs to trigger your nostalgia.

    Alex CranzSep 19

  3. Will the future of music sound a lot like the past?

    Alex CranzSep 19

  4. Vergecast: reviews of the iPhone 14 Pro, Apple Watch Series 8, and more

    Andrew MarinoSep 16

  5. Listen to our podcast about our website redesign

    Andrew MarinoSep 14

See all Podcasts
Microsoft

Here’s how Microsoft is rolling out its first major update to Windows 11

Tom Warren5:00 PM UTC
Microsoft

Windows 11’s 2022 Update has something new for everyone

Tom Warren5:00 PM UTC
D
External Link
David Pierce4:51 PM UTC
Bluetooth speakerphones are an underrated accessory.

Wirecutter has a good roundup of options, which are as good for Zoom calls as advertised, but they’re also just useful in life! I use mine roughly as a desk phone, and also connect it every time we’re doing the “everyone gather around the phone to talk to Grandma” thing. I have the Jabra Speak 510, and love it.


Do You Need a Fancy Bluetooth Speakerphone to Make Your Zoom Meetings Better?

[Wirecutter: Reviews for the Real World]

Gaming

Deals PSA: Today’s the last day to buy Vampire Survivors on Steam for just $2.99

Antonio G. Di Benedetto4:43 PM UTC
Apple

Apple quietly bankrolled a lobbying group for app developers

Makena Kelly4:37 PM UTC

Most Popular

  1. Nvidia announces next-gen RTX 4090 and RTX 4080 GPUs

    Tom WarrenSep 20

  2. GTA 6 gameplay leaks online in 90 videos

    Tom WarrenSep 18

  3. Beyond Meat COO reportedly attempts to consume human nose

    Elizabeth LopattoSep 19

  4. Sony’s first major PS5 redesign will reportedly have a detachable disc drive

    Mitchell ClarkSep 19

  5. Peloton Row hands-on: pretty much what you’d expect

    Victoria SongSep 20

E
External Link
Elizabeth Lopatto4:28 PM UTC
The SPAC-lash is here.

So remember the craze for SPACs, an alternative way to take a company public? The times, they have a-changed: the SPAC King of Silicon Valley, Chamath Palihapitiya, couldn’t find acquisition targets for two of his piles of cash. One of them, Social Capital Hedosophia VI, is the largest-ever SPAC.


SPAC King Palihapitiya Shutters Two SPACs as Deal Hunt Fails

[Bloomberg.com]

R
Twitter
Richard Lawler4:23 PM UTC
Use every (mega) pixel.

Halide is touted as one of the best photography apps on the iPhone, and as usual, it has a new update out to help you get the most out of the best camera available on the platform — that 48-megapixel sensor on the iPhone 14 Pro.

Version 2.9.0 of Halide is live in the App Store, with quick 48MP shooting directly to HEIC or JPG and many other new features.


Gaming

Nvidia shows off DLSS 3, the new version of its impressive upscaling tech

Jon Porter4:22 PM UTC
N
Quote
Nilay Patel4:21 PM UTC
Speaking of CarPlay.

Dan posted about CarPlay earlier and it reminded me that wireless CarPlay has actually set Apple back in its quest to somehow take over the car market — problems with it disconnecting are the number one complaint from new car owners, according to JD Power. Something to think about as Apple continues its relentless quest to remove all the ports from our phones.

The most frequent problem reported across the industry regardless of powertrain type or brand cachet related to smartphone connectivity. Dropped connections with Apple CarPlay was the number one problem, as Android Auto complaints leveled off from last year. Further, the number of reported problems with wireless Apple CarPlay increased as well, due to the feature being offered in more cars. 


Tech

This US political site has started using AI to illustrate its articles

James Vincent4:14 PM UTC
Tech

GM will sell 175,000 electric vehicles to Hertz over the next five years

Andrew J. Hawkins4:08 PM UTC

Reviews

See all Reviews
Gaming

The original Portal is getting a free ray-tracing update in November

Cameron Faulkner4:03 PM UTC
TV Shows

Andor is a sobering reflection on the human costs of Star Wars’ never-ending conflicts

Charles Pulliam-Moore4:00 PM UTC
Google

Google is finally making its to-do list and reminder tools work together

David Pierce4:00 PM UTC
Gaming

EA is making a single-player Iron Man game

Jay Peters3:36 PM UTC
Gaming

Krafton shows off a ‘concept trailer’ for its ambitious fantasy epic

Andrew Webster3:29 PM UTC
Science

Remote Alaskan towns are proof of concept for virtual hearing care

Nicole Wetsman3:18 PM UTC

Science

See all Science
R
Twitter
Richard Lawler2:43 PM UTC
PC gamers showed up for a PlayStation hit.

NPD’s August update for videogame sales has arrived, noting that PS5 was number one in hardware sales for the month and that new-gen hardware sales are up significantly from last year due to improved supply for both the PS5 and Xbox Series X / S.

But the most astounding leap came from Marvel’s Spider-Man, which jumped from 84th on the chart the month before to number 3, thanks to Sony re-releasing the PlayStation exclusive on PC via Steam (and Steam Deck).


Gaming

Baby Yoda is a Tamagotchi now

Andrew Webster2:43 PM UTC
Gaming

Nintendo is cutting off Facebook and Twitter logins soon

Emma Roth2:38 PM UTC
D
External Link
Dan Seifert2:37 PM UTC
Apple’s CarPlay is still frustratingly basic.

Stephen Hackett at 512 Pixels has blogged about the frustrations he’s had migrating to a new iPhone and not having his CarPlay preferences carry over, despite every other app on his phone copying over correctly.

I’m with him on that, but I’m more annoyed by the second point he highlights: CarPlay still treats every vehicle you connect to as a different thing. Instead of preserving your preferences when you plug in to a different car, it makes you set it all up again for each new vehicle. This is annoying for families with more than one car; it’s downright maddening for frequent users of rental cars. Seems like a simple thing to fix!


The CarPlay Settings Disconnect

[512 Pixels]

Creators

See all Creators