Passwords are old school. Biometrics is the new-age security solution that is being implemented rapidly across organizations and devices. Almost all the latest smartphone models come with a built-in fingerprint sensor these days. Biometric data is considered to be the most secure form of authentication as it belongs to an individual and can’t be changed. The very advantage of biometrics can soon turn into a security nightmare.
An investigation conducted by Kaspersky Labs has unearthed increasing availability of biometrics skimming devices on the darknet. These devices, capable of skimming victim’s fingerprints can be easily bought from at least twelve sellers against Bitcoin payments. In a statement, a security expert from Kaspersky Labs Olga Kochetova says,
“The problem with biometrics is that, unlike passwords or PIN codes which can be easily modified in the event of compromise, it is impossible to change your fingerprint or iris image. Thus if your data is compromised once, it won’t be safe to use that authentication method again.”
According to Olga, the easiest way for someone to gain access to biometric data is by accessing modern passports and visas. These documents have biometric data of the holder embedded in them and anyone with access to these documents