— The nightmare of all information security experts has come true!
— And more details?
- Chief, there has been a biometric data leak involving several government organizations.
— With us?
— You are right. numbers assigned to each citizen of the sweden whatsapp data as part of the citizen identification process to confirm customer transactions. Identification is based on questionnaire data, iris images and fingerprints. This data is used, in particular, to authenticate and authorize money transfers, as well as to make payments.
- And what happened?
— These banks have literally completely cleared the accounts of more than 400 clients using such identification. Apparently, our central storage of unique personal numbers was attacked. And how much information was stolen as a result of the attack — we simply do not know.
— It really is a nightmare. The worst thing is that biometric data, unlike a password, cannot be changed. Therefore, biometrics can no longer be used for these people. And the worst thing is that the exact size of the leak is unknown. How many people are affected? Who can be trusted? Who can't? In fact, this is the collapse of authentication using biometric data.
- Yes, boss, now I understand why you always said that biometric authentication is a convenience, but not a security feature!
- Yes. I really think so. Moreover, in my opinion, hacking databases containing biometric data will lead to the fact that the entire system of authentication of citizens will have to be changed, and this is both time and huge money.
- And what will happen to these unfortunate people?
— The victims will get their money from the imperial insurance fund. But what to do with the biometric fund? Send our guys to the ID storage. The authentication system will not work until further notice. We must understand not only how the leak occurred, but also how much and what data was leaked.
Several banks use unique personal
-
- Posts: 543
- Joined: Mon Dec 23, 2024 3:14 am