HTC left unsecured fingerprint data on the One Max

HTC-One-Max-back-camera-macro
The HTC One Max was one of the first modern Android smartphones to feature a fingerprint sensor, but it appears HTC didn’t take security of those fingerprints very seriously, and stored some data related to them unencrypted on the device. This means if it fell into the hands of a talented hacker, a copy of your fingerprint could be easily created.

Evidence was presented by a team of experts from security company FireEye Labs at the Black Hat conference in Las Vegas recently, where the authentication and authorization systems used for mobile phone fingerprint analysis were examined. The team wanted to highlight the need for strong security measures to keep fingerprint data safe, because unlike a traditional password, once a fingerprint has been stolen — it’s out there forever, and cannot be changed.

HTC was alerted to the flaw prior to the conference, and sent out an update to fix it before the findings were presented, so if you own a One Max and regularly use the fingerprint sensor — don’t worry, it’s secure now. FireFly Labs also identified other problems related to security issues with sensors, which affected phones other than the One Max — the Samsung Galaxy S5 is mentioned specifically — and these problems have also been patched by their respective manufacturers.

Fingerprint sensors as a way to secure our mobile devices and authorize mobile payments are becoming more common, particularly as new systems such as Samsung Pay and Android Pay emerge. FireFly Labs says owners can help protect themselves by choosing smartphones with up-to-date software, and apply new updates when they arrive, plus to use apps from reliable, known sources. It also urges manufacturers to improve security around sensors and the data collected.

The news comes shortly after Android was affected by the Stagefright bug, which threatened to disable smartphones with a simple message. The seriousness of the alert prompted companies to not only rapidly send out a software fix, but also to promise regular security updates for devices in the future.

Mobile

5G phones make a lot of promises. Here’s what to really expect

There has been a lot of marketing copy expounding the potential benefits of 5G networks, but a lot less on the practical implications of 5G smartphones. There's a reason for that.
Mobile

The Note 8 and S8 range now have access to the Android Pie beta

Android 9.0 Pie has been released. But is your phone getting Android 9.0 Pie, and if so, when? We've done the hard work and asked every device manufacturer to see when their devices would be getting the update.
Mobile

Samsung's advanced folding phone needed 'total reconfiguration' to make it real

Samsung has been showcasing bendable display tech for a few years and now a folding smartphone might finally arrive. The Galaxy X, or perhaps the Galaxy Fold, may be the company's first example. Here's everything we know about it.
Product Review

Apple brought ECG tracking to consumers. Withings is making it affordable

The Apple Watch Series 4 starts at $400, and the highlight function is the electrocardiogram, which has the potential to save lives. Withings’ new Move ECG has the same capability but at a fraction of the cost.
Mobile

Here’s how to download podcasts and listen to them on Android or iOS

Podcasts have become a cultural staple. Here's how to download podcasts and listen to them on your Android or iOS device, and which apps to use if you're looking to get the most out of the format.
Business

Apple banned from distributing some iPhone models in Germany

Apple is following the FTC's lead and has sued Qualcomm for a massive $1 billion in the U.S., $145 million in China, and also in the U.K., claiming the company charged onerous royalties for its patented tech.
Emerging Tech

Awesome Tech You Can’t Buy Yet: camera with A.I. director, robot arm assistant

Check out our roundup of the best new crowdfunding projects and product announcements that hit the web this week. You may not be able to buy this stuff yet, but it sure is fun to gawk!
Mobile

Windows 10 Mobile is dead: Switch to iOS or Android, Microsoft says

A Microsoft support page detailed the company's plans to end support for Windows 10 Mobile in less than a year. Users with devices powered by the platform are suggested to switch to iOS or Android devices.
Mobile

How to use iOS 12’s Passwords and Accounts tool to autofill passwords

Keeping track of all your passwords and accounts can be a real chore. If you use an iPhone with iOS 12, then you don't have to. Here's how to use iOS 12's own password manager to autofill passwords.
Computing

What is fixed wireless 5G? Here’s everything you need to know

Here's fixed wireless 5G explained! Learn what you need to know about this effective new wireless technology, when it's available, how much it costs, and more. If you're thinking about 5G, this guide can help!
Mobile

Razer’s Wireless Charger will turn your desk into gamer heaven

The Razer Wireless Charger adds colorful flair to your desk or bedside table. It works with any phone that supports Qi wireless charging -- with some quirks -- but is it worth the high price tag? We take a look.
Gaming

Xbox app lets you access your console while away from home. Here's how

Microsoft's Xbox allows you to access your profile information and launch media content directly from your mobile device. Check out our quick guide on how to connect your smartphone to an Xbox One.
Wearables

The best Apple Watch bands and straps to stylize your timepiece

If you have an Apple Watch, you know how easy it is to take off the strap it came with, so why not buy yourself another one? Here, we've gathered the best Apple Watch bands we've seen so far. There's something for everyone.
Mobile

How to choose an iPad in 2019: A practical guide to Apple’s tablets

Selecting an iPad from Apple's lineup can be intimidating, but it doesn't have to be. Our comprehensive guide should put the numbers and specs in practical, easy-to-understand terms. Find your ideal iPad with the help of our guide.