Berlin-based Security Research Labs has detailed various exploits within the iPhone 5s' Touch ID security feature and iOS 7 that allow would-be criminals to bypass the device's security features, reports Reuters.

The method for bypassing the Touch ID security feature found on the iPhone 5s is very similar to the one used by the Chaos Computer Club, which also claimed to hack Touch ID earlier this month. A video posted on the group’s website shows how Touch ID can be bypassed using information gathered from fingerprints left on the victim’s phone display, demonstrating that a photo taken with the iPhone 4s can be used for developing a mold.


Another video by the group outlines a scenario in which a knowledgeable criminal could steal an iPhone 5s running iOS 7, use Control Center on the lock screen (enabled by default) to turn on Airplane Mode and disable the device’s connectivity, then using a fingerprint mold to bypass the lock screen and disable other various security features. Ultimately, the group shows how an attacker could conceivably gain complete control of a victim's device, Apple ID, and even other services such as Google accounts.

The group ends the video by suggesting Apple do the following to increase security efficiency in iOS 7:

1. Make Airplane Mode inaccessible from the lock screen by default and require PIN after setting Airplane Mode or removing SIM Card
2. Warn users not to store password-reset email accounts on iDevices
3. When device is lost for good, advise users to revoke its privileges
4. Do not inform potential attackers how the device is protected
5. Upon reconnecting to the Internet, iOS should not allow email retrieval before the device’s wipe- or don’t-wipe status can be retrieved


Aside from any future changes Apple may make to increase security, users can already prevent the simple bypass of the Remote Wipe feature by turning off access to Control Center from the lock screen.

iOS 7 has recently been the subject of much praise by security officials, including the New York Police Department, which passed out flyers in New York City recommending users to update to iOS 7, along with government officials who have praised iOS 7’s Activation Lock. Meanwhile, Touch ID has been the subject of much scrutiny since its release, with U.S. Senator Al Franken sending a letter to Tim Cook asking a number of questions about the security of the system and the exact fingerprint storage process. Apple has also published an extensive knowledge base article about the benefits of the Touch ID system to alleviate some consumer concerns.

Top Rated Comments

Technarchy Avatar
120 months ago
So far it looks like Touch ID is a pain in the ass to bypass.
Score: 20 Votes (Like | Disagree)
smiddlehurst Avatar
120 months ago
I hope Apple will listen.

I have seen a lot of "not thought of / invented here" attitude.

Not saying they don't, but it takes a lot of crying on many occasions.

Listen to.... what, exactly?

Pretty much all security can be bypassed if you have physical access to the device and enough time / money / resources / skill. Security on phones is no exception to this, indeed they can be far less secure than say a desktop as if it's stolen with other items those items often provide data to help bypass that security.

Touch ID is simply another form of pass code and all pass codes do is try to discourage the 'casual' theft of phones for resale and prevent a typical thief from accessing your data. Touch ID isn't suddenly going to turn a device into a digital Fort Knox. What it will do is actually far more useful - it removes a pain point and makes using a pass code far easier and more convenient (dare I say, even makes it a little bit fun). That, in turn, will see a far higher percentage of iOS devices having some form of security active and that will make them a less attractive target.

The only time anyone really needs to worry about this is if someone figures out a genuine bypass that removes security and gives full access to the phone that can be done simply and easily. Everything else is just grandstanding for media attention.
Score: 3 Votes (Like | Disagree)
Slim02 Avatar
120 months ago
Well people stop calling the bypass a damn hack.. It is not a hack because there is nothing being hack...
Score: 3 Votes (Like | Disagree)
Iampr Avatar
120 months ago
Why not just set a restriction (Settings | General | Restrictions) on making changes to accounts? Then the find my iPhone can't be turned off without knowing an additional 4 digit code
Score: 3 Votes (Like | Disagree)
caliguy Avatar
120 months ago
I want to see them bypass the sensor with "real world" fingerprints. Take the iPhone sitting on my desk and lift one of those smudges...
Score: 3 Votes (Like | Disagree)
fallenjt Avatar
120 months ago
How the hell can you get that fingerprint on the glass so easily? You coated your finger with some type of grease? I press my thumb hard on the glass and got no fingerprint at all after multiple times. Your method may work in theory, but in reality, you wont be able to get a fringerprint from iPhone screen. Even if you can get that print, it must be the correct fingerprint on file.
Somehow, middle finger can work the best for touch ID because you dont use it to operate the phone ever, but thumb and index fingers.
Score: 2 Votes (Like | Disagree)

Popular Stories

iPhone Measure Height

Newer iPhones Allow You to Measure Someone's Height Instantly — Here's How

Saturday December 3, 2022 10:23 am PST by
iPhone 12 Pro and Pro Max, iPhone 13 Pro and Pro Max, and iPhone 14 Pro and Pro Max models feature a LiDAR Scanner next to the rear camera that can be used to measure a person's height instantly in Apple's preinstalled Measure app. To measure a person's height, simply open the Measure app, point your iPhone at the person you want to measure, and make sure they are visible on the screen from...
iOS 16

When Will iOS 16.2 Be Released?

Friday December 2, 2022 2:13 pm PST by
Apple in late October began testing iOS 16.2 and iPadOS 16.2 updates, providing betas to both developers and public beta testers. As of now, we've had four total betas, with the fourth beta having been released earlier this week. iOS 16.2 and iPadOS 16.2 are expected before the end of the year, and we thought we'd try to narrow down the launch timeline. With only four betas released since...
14 vs 16 inch mbp m2 pro and max feature 1

Major RAM Upgrade Coming to Next-Generation MacBook Pro

Friday December 2, 2022 2:03 am PST by
The next-generation MacBook Pro models could feature faster RAM, according to a recent report from a reliable source. MacRumors Forums member "Amethyst," who accurately revealed details about the Mac Studio and Studio Display before those products were announced, recently provided information about Apple's upcoming 14- and 16-inch MacBook Pro models. The new machines are expected to feature...
General iOS 16 Feature Yellow

iOS 16.2 for iPhone Launching This Month With These 8 New Features

Thursday December 1, 2022 8:44 am PST by
Apple plans to publicly release iOS 16.2 for the iPhone in mid-December, according to Bloomberg's Mark Gurman. The update remains in beta testing for now, with at least eight new features and changes already uncovered so far. iOS 16.2 introduces a number of new features, including Apple's new whiteboard app Freeform, two new Lock Screen widgets for Sleep and Medications, the ability to hide...
apple ar headset concept 1

Kuo: Apple Headset Shipments Potentially Delayed Until Second Half of 2023

Sunday December 4, 2022 7:38 am PST by
Mass shipments of Apple's long-rumored AR/VR headset may be delayed until the second half of 2023 due to unspecified "software-related issues," according to the latest information shared today by tech analyst Ming-Chi Kuo. Apple headset render by Ian Zelbo Kuo said mass shipments of components for the headset are still likely to begin in the first half of 2023, but he believes that mass...
Emergency SOS via Satellite iPhone YT

Apple's iPhone 14 Emergency SOS via Satellite Feature Saves Stranded Man in Alaska

Thursday December 1, 2022 4:37 pm PST by
With the launch of iOS 16.1, Apple rolled out a Emergency SOS via Satellite, which is designed to allow iPhone 14 owners to contact emergency services using satellite connectivity when no cellular or WiFi connection is available. The feature was put to the test in Alaska today, when a man became stranded in a rural area. In the early hours of the morning on December 1, Alaska State Troopers ...
iPhone 14 Pro Purple Side Perspective Feature Purple

iPhone 15 Pro Rumored to Have These 5 Exclusive Features

Saturday December 3, 2022 10:55 am PST by
While we're still around nine months away from Apple unveiling the iPhone 15 lineup, rumors already suggest that the higher-end Pro models will have even more exclusive features than usual compared to the standard models next year. There are currently at least five features rumored to be exclusive to iPhone 15 Pro models:A17 chip: iPhone 15 Pro models will be equipped with an A17 Bionic...
top stories 3dec2022

Top Stories: M2 Max Benchmark Leak, iPhone 15 Camera Rumor, and More

Saturday December 3, 2022 6:00 am PST by
With Black Friday and Cyber Week shopping events winding down and the calendar flipping over to December, our attention is starting to turn to 2023 and all of the Apple news we're expecting to see. This week saw an alleged benchmark leak for an "M2 Max" chip expected to make an appearance in upcoming Macs like the MacBook Pro early next year, as well as fresh rumors about the iPhone 15...
android apple fix rcs

Google Again Criticizes Apple for Not Adopting RCS for Messages App: 'Their Texting is Stuck in the 1990s'

Friday December 2, 2022 10:54 am PST by
Google is continuing on with its attempt to convince Apple to adopt the RCS messaging standard, publishing a new "it's time for RCS" blog post. Promoted heavily by Google, RCS or Rich Communication Services is a messaging standard that is designed to replace the current SMS messaging standard. It provides support for higher resolution photos and videos, audio messages, and bigger file sizes, ...
maxresdefault

Can't Get an iPhone 14 Pro? Here's Why You Should Wait for the iPhone 15 Ultra

Monday December 5, 2022 11:44 am PST by
Due to production issues at Apple supplier factories in China, the iPhone 14 Pro and iPhone 14 Pro Max are backordered and basically out of stock at every store. If you were planning to gift or receive an iPhone 14 Pro model for the holidays and didn't already get one, you're basically out of luck because they're gone until late December. Subscribe to the MacRumors YouTube channel for more ...