As part of the biometric software,BioStar 2 uses facial recognition and fingerprinting technology to identify users.
Suprema recently partnered with Nedap to integrate BioStar 2 into their AEOS access control system.
Malicious agents could use this tohack into secure facilities and manipulate their security protocols for criminal activities.
However,we found BioStar 2 generally very uncooperativethroughout this process.
Our team madenumerous attempts to drop a line to the companyover email, to no avail.
Eventually, we decided to reach out to BioStar 2s offices by phone.
Again, the company waslargely unresponsive.
This suggests they wereaware of us, and our attempts to address the issue.
We also tried to contact BioStar 2s GDPR compliance officer but received no reply.
The range of businesses affected by the leak varied widely in size, location, industry, and users.
Data Breach Impact
Facial recognition and fingerprint information cannot be changed.
They canuse this database to quite literally walk into a room and take anything of value.
With this, they cansteal valuable information, plant viruses, monitor and exploit systems, and much more.
The same personal details can also be used tocraft effective phishing campaigns.
With the personal and professional details available in this leak, creating effective phishing campaigns would not be difficult.
This could lead tomany untraceable, incriminating activities committed with the data of innocent BioStar 2 users.
It allows a hacker togain access to valuable information or assets without putting themselves in physical danger.
This putsemployees of the affected BioStar 2 clients under a great deal of potential danger.
Using Stolen Fingerprints
The use of biometric security like fingerprints is a recent development.
As such,the full potential danger in having your fingerprints stolen is still unknown.
This is just one potential issue of many.
For BioStar 2, one of the biggest issues right now is reputational.
We’re concerned that a security company has failed to fully protect its clients.
We also suggestchanging the password to your BioStar 2 dashboard immediately and notifying staff to change their personal passwords.
Additionally, we suggest creating a guide or sharing tools with your staff to help themgenerate secure passwords.
There are plenty ofonline password metersavailable to ensure that they are better protected.
You should notify the business or employer of your concerns and ensure theyre aware of the data leak.
If youre concerned about data vulnerabilities in general, read ourcomplete guide to online privacy.
They use these blocks to find holes in a companys web system.
Once these holes are found,the team looks for vulnerabilities that would lead them to a data breach.
Using their expertise, they alsoexamined the database to confirm its identity.
We recently discovered a hugedata breach impacting 80 million US households.
We also revealed thatGearbest experienced a massive data breach.
You may also want to read ourVPN Leak ReportandData Privacy Stats Report.
Pleaseshare this report on Facebookortweet it.
[Publication date: 14.08.2019]
yo, comment on how to improve this article.
