Incident 26: Hackers Break Apple Face ID

Description: Vietnamese security firm Bkav created an improved mask to bypass Apple's Face ID

Tools

New ReportNew ReportNew ResponseNew ResponseDiscoverDiscoverView HistoryView History
Alleged: Apple developed and deployed an AI system, which harmed Apple and Device Owners.

Incident Stats

Incident ID
26
Report Count
24
Incident Date
2017-09-13
Editors
Sean McGregor

CSETv0 Taxonomy Classifications

Taxonomy Details

Full Description

In November 2017, Vietnamese security firm Bkav bypassed Apple's Face ID authentication system by creating a mask made by using photos, stone powder, and 2D printed infrared images. Their experiment was designed to demonstrate the ease of unlocking, low cost (of about $200), and risk posed by using Face ID versus fingerprint-based Touch ID. This experiment provided further evidence from past claims made one month prior.

Short Description

Vietnamese security firm Bkav created an improved mask to bypass Apple's Face ID

Severity

Negligible

Harm Type

Harm to intangible property

AI System Description

1:1 matching facial recognition system to verify and grant access to Apple devices employing Face ID.

System Developer

Apple

Sector of Deployment

Information and communication

Relevant AI functions

Perception, Cognition, Action

AI Techniques

Deep learning

AI Applications

Facial recognition

Location

Vietnam

Named Entities

Apple, Bkav

Technology Purveyor

Bkav, Apple

Beginning Date

11-2017

Ending Date

11-2017

Near Miss

Unclear/unknown

Intent

Unclear

Lives Lost

No

Data Inputs

One billion training images, infrared facial scan of individual user

CSETv1 Taxonomy Classifications

Taxonomy Details

Harm Distribution Basis

none

Sector of Deployment

information and communication

How safe is Apple's Face ID and can it be hacked? New iPhone X security feature explained
ibtimes.co.uk · 2017

Apple's brand new iPhone X (pronounced 'Ten' by the way) has gone one step further to secure your smartphone by doing away with the Touch ID fingerprint scanner and will now use your face to unlock the device.

Using a new system called Face…

We Tried Really Hard To Beat Face ID—and Failed (So Far)
wired.com · 2017

When Apple announced the iPhone X last month—its all-screen, home-button-less, unlock-with-a-look flagship—it placed an enormous bet on facial recognition as the future of authentication. For hackers around the world, Face ID practically pa…

iPhone X Face ID security tricked by hackers with 3D-printed mask
standard.co.uk · 2017

ES Lifestyle newsletter The latest lifestyle, fashion and travel trends ES Lifestyle newsletter The latest lifestyle, fashion and travel trends Enter your email address Continue Please enter an email address Email address is invalid Fill ou…

iPhone's Face ID can be hacked, but here's why nobody needs to panic
techrepublic.com · 2017

A Vietnamese company was recently able to trick Apple's facial recognition security feature, but security experts don't believe there's a big risk for business users.

Video: 5 things to know about Apple's Face ID Curious about Apple's Face …

iPhone X Face ID hack uses olives and paper eyes
gearbrain.com · 2017

Apple's new Face ID unlock system on the iPhone X can reportedly be tricked with paper eyes and pizza toppings.

Yes, you read that correctly, but let us explain. Life-size eyes printed onto paper, then placed on the face of a 'sleeping' iPh…

Hackers Claim to Break Face ID a Week After iPhone X Release
wired.com · 2017

This article has been updated below with another, more convincing video demonstration of Bkav's Face ID spoofing, which the firm revealed two weeks after the original.

When Apple released the iPhone X on November 3, it touched off an immedi…

What is Face ID and how does Face ID work?
alphr.com · 2017

Apple no longer wants you to unlock your iPhone with touch. With the iPhone X, it’s all about your face.

Face ID was the standout feature of the iPhone X, and one that differentiates it from the iPhone 8 range and anything that’s come befor…

iPhone X’s Face ID supposedly got hacked. We have questions
cnet.com · 2017

BKAV

Did Apple's vaunted Face ID facial recognition system on the iPhone X already get hoodwinked?

That's what a Vietnamese security company says it did -- using only a $150 3D-printed mask. BKAV uploaded a video demonstration as a proof of…

Hackers claim to beat iPhone X's Face ID in one week with £115 mask
telegraph.co.uk · 2017

Apple claims the facial recognition system on the new iPhone X is impervious to being fooled by photos, impersonators and masks, but a team of hackers claim to have beaten the technology after just a week.

Cyber security firm Bkav says a 3D…

Hackers claim they fooled Face ID with cheap mask
cultofmac.com · 2017

Hackers may have already proven that Face ID isn’t quite as secure as secure as Apple claims.

Using a simple 3D printed mask, Vietnamese security firm Bkav, has posted a video showing an iPhone X being unlocked after unveiling a composite 3…

Hackers develop £115 mask to fool Apple's iPhone X Face ID
dailymail.co.uk · 2017

It's one of the most wanted features in the iPhone X, but it seems that Face ID may not be as safe as Apple thinks.

Cyber-security researchers claim they have fooled the face recognition technology with a mask that costs just £114 ($150) to…

Why It's Not a Big Deal That Masks Can Fool Face ID on the iPhone X
lifehacker.com · 2017

When Apple first announced Face ID for the iPhone X, it claimed the new feature was significantly more secure than Touch ID and couldn’t be fooled by even the most realistic of masks. But it turns out that might not be the case.

Vietnamese …

Hackers say they broke Apple’s Face ID. Here’s why we’re not convinced
arstechnica.com · 2017

Security researchers say they used a $150 mask to break the Face ID facial recognition system that locks Apple's new iPhone X. The work may be a significant, it may be little more than a stunt with few real-world consequences, or it could p…

Hackers fool the iPhone X's Face ID using a cheesy-looking mask
finance.yahoo.com · 2017

Https%3a%2f%2fblueprint api production.s3.amazonaws.com%2fuploads%2fvideo uploaders%2fdistribution thumb%2fimage%2f82967%2f7e1f7535 a028 4885 9984 973f49d6cd0c More

There is no such thing as foolproof phone security.

Case in point: Security…

Apple iPhone X Face ID: Vietnam Firm Demos Possible Hack
fortune.com · 2017

A researcher in Vietnam has demonstrated how he apparently fooled Apple‘s face recognition ID software on its new iPhone X using a mask made with a 3D printer, silicone, and paper tape.

An announcement on Friday by Bkav, a Vietnamese cybers…

Hackers fool Apple's super secure Face ID and unlock iPhone X with a simple mask
thesun.co.uk · 2017

IT'S barely been available for ten days, but conniving hackers have already cracked the iPhone X's facial recognition security system.

Security experts based in Singapore used a 3D scanner to re-create the owners face at a cost of £115.

You…

Apple FaceID Hacked
schneier.com · 2017

It only took a week:

On Friday, Vietnamese security firm Bkav released a blog post and video showing that -- by all appearances -- they'd cracked FaceID with a composite mask of 3-D-printed plastic, silicone, makeup, and simple paper cutout…

How to fool Face ID on the iPhone X
computerworld.com.au · 2017

A researcher in Vietnam has demonstrated how he apparently fooled Apple's face recognition ID software on its new iPhone X using a mask made with a 3D printer, silicone and paper tape.

An announcement on Friday by Bkav, a Vietnamese cyberse…

Face ID hack is a little concerning
news.com.au · 2017

IT TURNS out Apple’s Face ID is far from perfect, as demonstrated by a 10-year-old boy who is the latest to “hack” the sophisticated technology.

How did he do it?

By simply looking like his mum.

Ammar Malik was able to break into his mum’s …

Face ID hasn't been hacked: What you need to know
imore.com · 2017

Face ID, Apple's facial identity sensor for iPhone X, is new and that's both scary and ripe for exploitation. We saw it happen with Touch ID, from all the concern that manifested when Apple announced it alongside iPhone 5s to the sensationa…

Apple Face ID 'Fooled Again' -- This Time By $200 Evil Twin Mask
forbes.com · 2017

The Vietnamese hackers who claimed earlier this month to have fooled Apple's Face ID with a mask costing less than $150 are back. But this time, their evidence is more compelling.

Whereas in their previous attack researchers from Vietnamese…

This Security Firm Has Found Another Way to Fool Apple’s Face ID
complex.com · 2017

iPhone X’s Face ID keeps getting tricked.

As pointed out by Forbes, researchers at the Vietnamese security firm Bkav have found another way to bypass Apple’s facial recognition system. The team, which pulled off a similar hack earlier this …

Apple iPhone X Face ID Biometrics Hacked Again
pymnts.com · 2017

Vietnamese hackers who previously said they could bypass Apple’s Face ID biometric phone security with a mask claim to have hacked the iPhone X again, this time with more evidence of their success.

According to news from Forbes, Vietnamese …

Face ID has been defeated again, and this time it was 'simple'
mashable.com · 2017

Breaking into a locked iPhone X shouldn't ever be described as simple, but according to a group of security researchers, that's exactly where we find ourselves.

The same Vietnamese team that managed to trick Face ID with an elaborately cons…

Variants

A "variant" is an incident that shares the same causative factors, produces similar harms, and involves the same intelligent systems as a known AI incident. Rather than index variants as entirely separate incidents, we list variations of incidents under the first similar incident submitted to the database. Unlike other submission types to the incident database, variants are not required to have reporting in evidence external to the Incident Database. Learn more from the research paper.

Similar Incidents

By textual similarity

Did our AI mess up? Flag the unrelated incidents