Exposed passwords are Kali Hansabad enough. But fingerprint and facial recognition data? That’s terrifying.
Suprema's Biostar 2 biometric security system came under scrutiny after vpnMentor and two researchers -- Noam Rotem and Ran Locar -- uncovered a major flaw that exposed the biometric data of more than 1 million people, according to The Guardian.
Biostar 2 is a security platform that, in part, utilizes facial recognition and fingerprints to control access to buildings and other secure facilities. Making the potential breach even worse: Biostar 2 was recently integrated into Nedap's AEOS security platform, which is used for security by thousands of companies and organizations in more than 80 countries.
The researchers said not only was the database unencrypted, but was accessed by tweaking URL search criteria in Elasticsearch, a search and analytics engine. And it contained a lot of data.
The Guardianreported that the researchers "had access to over 27.8m records, and 23 gigabytes-worth of data including admin panels, dashboards, fingerprint data, facial recognition data, face photos of users, unencrypted usernames and passwords, logs of facility access, security levels and clearance, and personal details of staff."
According to vpnMentor, the exposed data was discovered on Aug. 5, 2019. Two days later, they notified Biostar 2 of the issue and by Aug. 13, the database was private. It's not known how long all of that information was accessible and if anyone, particularly bad actors, had gained access to the database.
What's more, vpnMentor reports that Biostar's office was "generally very uncooperative."
SEE ALSO: Amazon claims its Rekognition software can now detect fearAmong the U.S.-based businesses the researchers were able to access data for: co-working space Union and medical supply company Phoenix Medical. But The Guardian notes that organizations that are part of AEOS include "governments, banks and the UK Metropolitan police."
We've reached out to Suprema for additional comment but, for now, you can continue to rest, uh, uneasily knowing that your data will never be fully secure.
Topics Cybersecurity Facial Recognition
Elon Musk told Donald Trump what to do about the Paris Climate Agreement
Powerful videos show 'Dreamers' storming Senate office building
Puppy thieves return dog to little girl, after seemingly feeling bad about the whole thing
Chevy pushes out Tesla for 'best EV' in U.S. News awards
Then and Now: 5 Generations of GeForce Graphics Compared
Chinese company offers lifetime's supply of liquor for just $1,673
Signal says Cellebrite phone
NASA's helicopter on Mars performs first powered aircraft flight on another planet
Swole Jeff Bezos joins Instagram to tease his new ROCKET FACTORY
Apple's 2021 iPad Pro packs its M1 chip, 5G, and mini
Swole Jeff Bezos joins Instagram to tease his new ROCKET FACTORY
Apple knows AirTags can be abused and is trying to get ahead of it
The $149 Luxe is Fitbit's most attractive fitness tracker yet
How to listen to audiobooks: Free apps vs. paid subscriptions
How to survive Valentine's Day when you're heartbroken
Apple's iOS 14.5 is here. Download it for these new features.
Google Chrome now lets you link people to highlighted text on a website
Obama is at jury duty and jury duty doesn't seem so bad anymore
Wordle today: The answer and hints for January 28, 2025
Pornhub's new couples sex toy line spices up holiday shopping season
George Lopez faces Twitter's rage for an anti'Destiny 2: New Light' review: It's free, and more welcoming than ever17 costume fails that are scary for all the wrong reasonsFace it, Super Liking on Tinder is for losersThe internet is desperately trying to reunite this lost teddy bear with its ownerBlind man sued Domino's over its website. Here's what the Supreme Court had to say.Apple now sells a smart bike helmet with an LED turn signalYes, your boss can read your Gmail drafts (and that's not all)How #DeleteUber serves as a stark warning for all startupsPlayStation 5 has a gimmicky new controller and an official nameWhy you should lie in your passwordGeorge and Amal Clooney are expecting twins so that's something niceNot even Donald Trump's antics can help Twitter at this pointTech gifts for people who really, really like watching TVGoogle guy builds bot that earns money from Trump tweets22 perfect couples costume ideas for Halloween 2019Tech gifts for people who really, really like watching TVLet's break down the common selfWatch Savannah Guthrie and Hoda Kotb's powerful response to new Matt Lauer allegationsTrump starring in weird ads for socks and pizza? Feels like a long time ago. Wordle today: The answer and hints for September 14 Best smartwatch deal: Save up to 24% on watches from Apple, Garmin, and Samsung Spotify announces pilot Premium membership tailored for kids Watch SpaceX's Polaris Dawn mission conduct the first all Apple fixes dangerous 'GAZEploit' Vision Pro security flaw Taylor Swift's voter registration link saw over 337,000 visitors Wordle today: The answer and hints for September 15 iPhone 16 deal: Save almost $100 at Walmart Best home security deal: Save up to 45% on systems from eufy, SimpliSafe, and Kasa Wordle today: The answer and hints for September 16 Bluesky adds videos to the platform to take on Elon Musk's X Verizon to lose almost 5,000 employees by March Best headphone deal: Save $150 on Bose QuietComfort Ultra headphones Meet o1: OpenAI's advanced reasoning 'Strawberry' model NYT Strands hints, answers for September 12 Windows laptop deal: Save $200 on the Acer Aspire 3 laptop at Target Chicago Sky vs. Minnesota Lynx 2024 livestream: Watch live WNBA Bournemouth vs. Chelsea 2024 livestream: Watch Premier League for free NYT Strands hints, answers for September 15 TikTok ban update: Court case against U.S. government set to begin
2.4889s , 10113.171875 kb
Copyright © 2025 Powered by 【Kali Hansa】,Exquisite Information Network