Microsoft, Dell and Lenovo laptops vulnerable to Windows Hello authentication flaw

Researchers employed reverse engineering techniques on both software and hardware

clock • 2 min read
Microsoft, Dell and Lenovo laptops vulnerable to Windows Hello authentication flaw
Image:

Microsoft, Dell and Lenovo laptops vulnerable to Windows Hello authentication flaw

Hardware security experts from Blackwing Intelligence have exposed vulnerabilities in Windows Hello's fingerprint authentication system, demonstrating how it can be bypassed to gain unauthorised access to devices.

The research, sponsored by Microsoft's Offensive Research and Security Engineering group and presented at the Microsoft BlueHat conference, sheds light on critical shortcomings in the implementatio...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Microsoft 365 emails vulnerable to newly discovered exploits

Security

Security woes continue

clock 20 June 2024 • 2 min read
Lenovo: Liquid cooling means 30% less energy used

Datacentre

Shifting is 'not as complicated as people may believe', says Lenovo UK&I ISG head Ian Jeffs

clock 20 June 2024 • 4 min read
Arm tries to block Copilot+ PC lauch

Law

Part of an ongoing dispute with Qualcomm

clock 18 June 2024 • 2 min read

More on Threats and Risks

Biden administration bans Kaspersky software over security concerns

Biden administration bans Kaspersky software over security concerns

Commerce secretary Gina Raimondo highlighted threats to critical infrastructure, while Kaspersky plans legal action.

Vikki Davies
clock 21 June 2024 • 3 min read
CISA confirms Windows privilege escalation flaw has been exploited

CISA confirms Windows privilege escalation flaw has been exploited

US cybersecurity agency also added a recently disclosed Google Pixel flaw to its list of exploited vulnerabilities

Kyle Alspach
clock 17 June 2024 • 1 min read
Windows users warned of wireless takeover vulnerability

Windows users warned of wireless takeover vulnerability

Users are advised to update immediately

Penny Horwood
clock 17 June 2024 • 2 min read