HTC Stored Fingerprint Images in Unencrypted Image File

Is there anything worse to store in plain text than passwords? Like, say fingerprint images? “Researchers from FireEye have found that data that could be used to clone a user’s fingerprint was stored as an unencrypted “world readable” image file on HTC smartphones. Four security researchers discovered that the image file, which is clear replica of a user’s fingerprint, could be stolen by rogue apps or hackers.”

%d bloggers like this: