Buzz
Cybersecurity experts warn that Microsoft's operating system could be compromised through Windows Hello, the facial recognition system on Windows 10.
Alert: Windows 10 computers at risk of exploitation through Windows Hello
Did you know that Windows Hello allows users to unlock their devices using facial recognition or fingerprint? However, security researchers at SYSS in Germany have bypassed the facial recognition feature of Windows Hello on devices not updated with Fall Creators Update using a regular printed photo.
SYSS stated that on these systems, Windows Hello can be easily cracked and impersonated by using a printed photo from a printer.
According to ZDNet, researchers have revealed that this type of attack can work on various versions of Windows 10 and on different hardware setups.
SYSS conducted a spoofing attack test on a Dell Latitude computer with a LilBit USB camera and a Microsoft Surface Pro 4 device running Microsoft's operating system. The devices were running multiple versions of Windows 10, including version 1511.
Researchers also revealed that Windows Hello in version 1607 (Anniversary Update), released last summer, was compromised, even though Microsoft had bolstered defenses against spoofing attacks.
Furthermore, if the anti-spoofing feature is disabled in the Creators Update (released earlier this year) or Fall Creators Update (released in October), anyone can trick Windows Hello.
To trick Windows Hello, an attacker only needs a printed photo of the computer owner.
In a post on Full Disclosure, SSYS shared: “According to our test results, Windows versions 1703 and 1709 are less vulnerable to described spoofing attacks using a printed photo if the 'anti-spoofing' feature is used with corresponding compatible hardware.”
Concerning the use of facial recognition with Windows Hello, SYSS advises updating to the latest version of Windows 10 (version 1709), activating the 'enhanced anti-spoofing' feature, and reconfiguring Windows Hello facial recognition.
Windows 10 computers vulnerable to attacks via Windows Hello
This information comes after Windows 10 users were warned of a security flaw that could expose passwords to cybercriminals. If your computer lacks any antivirus software, the risk of system compromise is very high.
Google Project Zero researcher Tavis Ormandy discovered security risks after installing Windows 10 using a new Microsoft image. He found that after installing Windows 10 afresh, Keeper Password Manager is also pre-installed on the computer.
In a post, Tavis Ormandy mentioned that the security vulnerability “completely compromises Keeper Password Manager,” allowing any website to “steal users’ passwords.
Ormandy installed Windows 10 using an image from the Microsoft Developer Network (MSDN), intended for developers.
Some Reddit users also reported that after installing Windows 10, even on a new laptop, Keeper Password Manager remained vulnerable.
Although information about Windows 10 computers being vulnerable to attacks via Windows Hello may make users distrust security features on this operating system, it cannot be denied that Windows 10 brings new, smoother features. Currently, the last opportunity for users to upgrade to Windows 10 for free this week is almost over as Microsoft continues to offer free upgrades to licensed Windows operating systems until the end of the year.
