Skip to main content
  1. Home
  2. Mobile
  3. News

Heavy sleepers, beware: Researchers bypass Apple FaceID using glasses with tape

By

Heavy sleepers should probably not leave their iPhones lying around, after a team of security researchers exposed a vulnerability with the FaceID facial recognition system using an ordinary pair of glasses and two colors of tape.

In the session at Black Hat USA 2019 titled Biometric Authentication Under Threat: Liveness Detection Hacking, researchers from Tencent demonstrated how to exploit a specific vulnerability in FaceID.

Recommended Videos

Liveness detection is part of the biometric authentication process that separates real facial features from the fake ones. Part of the process is determining whether a person is awake with eyes open, or asleep with eyes closed. If the iris and pupil are not detected, then the device will not unlock.

Please enable Javascript to view this content

Meanwhile, Apple’s facial recognition system allows iPhone owners to unlock their devices even while they are wearing glasses. However, once FaceID detects glasses, it skips extracting information from the eye area.

Related

Combining these two features, the Tencent researchers figured out a way to bypass FaceID by sticking black tape on the center of each lens, and then white tape in the middle of each black tape. The black tape and white tape represent the iris and pupil, respectively.

Once the glasses are worn by victims, holding up their iPhone to their faces will trick FaceID and unlock the devices, giving the attacker access.

Regular iPhone owners will not have to worry about the FaceID vulnerability, as it will be difficult to put glasses on sleeping people without waking them up. The exploit will be effective when the victim is unconscious though, which will probably raise more alarms than an unlocked iPhone.

The method presented by the Tencent researchers is similar to the adversarial glasses that have baffled facial recognition systems. There have been other ways of fooling the technology such as a baseball cap studded with LEDs and a mash-up of a mask, but the glasses with tape trick appears to be the easiest to pull off so far.

Apple itself was at the Black Hat conference to announce an expanded bug bounty program that will pay $1 million for researchers who can discover a “zero-click full chain kernel execution attack with persistence.”

Editors’ Recommendations

Topics
Aaron Mamiit
Aaron Mamiit
Contributor
Aaron received an NES and a copy of Super Mario Bros. for Christmas when he was four years old, and he has been fascinated…
I need to change how I use Apple tech in 2024. Here’s how I’m going to do it
Blue Titanium iPhone 15 Pro showing Disney Emoji Blitz.

I’ve had Apple products for almost as long as I’ve been interested in tech, yet in all that time, I’ve never really put much thought into how I use my devices. But, like many people squinting bleary-eyed and hungover into the dawning of a new year, I’ve realized it’s about time I made some changes.

I’m a real book lover – letting me wander into a bookstore unaccompanied is intensely dangerous for my wallet – yet I’m barely making any progress on my reading backlog because I spend so much time on my iPhone. If I’m ever going to get through the reams of books lining my bookshelves, I’ve got to do things a little differently. And that’s what my 2024 New Year’s tech resolution is all about.
Not a blanket ban

Read more
There’s only one reason I’m still using an iPhone in 2023
A green iPhone 15 lock screen.

It's not an understatement to say I am an Android smartphone fan, as an Android phone has been my faithful companion ever since I started using the HTC Desire in 2010. I've bounced from phone to phone in the 13 years since, and I've experienced good and bad phones alike. But in all that time, I've never spent much time with an Apple iPhone. I'm obviously not unfamiliar with iPhones, having used them during my time as a tech writer grabbing screenshots, downloading apps, and testing games — but never having used one as my primary smartphone is something of a blind spot.

The Apple iPhone 15 is a good reason to end that. After all, if I'm going to use an iPhone, it might as well be Apple's latest. Two weeks after booting it up and transferring my data to it, it's been ... a journey. While I can see the iPhone 15 is an excellent smartphone, too many of iOS's idiosyncracies rub me the wrong way. However, there's one feature I've grown to really love, and I'm going to struggle to live without it.
The iPhone 15 is a mixed bag

Read more
How I use my Apple Watch and iPhone to manage my diabetes
iPhone 15 Pro showing One Drop app and kit.

It’s November, which means it’s Diabetes Awareness Month, with World Diabetes Day recently happening on November 14. According to data from the Apple Heart and Movement Study (AHMS) and Apple Women’s Health Study (AWHS), there are about 537 million adults worldwide who are currently living with diabetes, with that number potentially reaching 643 million by 2030. In the U.S. alone, about two out of five people will develop diabetes in their lifetime, and more than one in three adults have elevated glucose levels that put them in the pre-diabetes zone.

I was pre-diabetic since my college years (it runs in both sides of my family), but then my doctor officially diagnosed me with Type 2 diabetes around early 2018. However, I was told that my case was more “mild” than others and that taking some medication — while also cutting out carbs and sweets, plus daily exercise — can help me keep it under control.

Read more