![](\"https:\/\/www.the-sun.com\/wp-content\/uploads\/sites\/6\/2023\/11\/2013-inspiron-15-affordable-notebook-862422702.jpg\")
<\/p>\nRESEARCHERS have uncovered vulnerabilities in three popular laptop fingerprint sensors.<\/p>\n
Vulnerabilities were found to be present on the Dell Inspiron 15, Lenovo ThinkPad T14, and Microsoft Surface Pro X laptops.<\/p>\n
<\/p>\n
The flaws could allow attackers to bypass Windows Hello fingerprint authentication, according to cybersecurity researchers Blackwing.<\/p>\n
Once a hacker bypasses your authentication, they can access your entire computer.<\/p>\n
This includes your personal files, photos, and even passwords to important accounts like banking.<\/p>\n
Malwarebytes Labs explained that each of the three sensors found on these laptops is the "match on chip" type.<\/p>\n
"This means that a separate chip stores the biometric credentials (in this case the fingerprints), making it almost impossible to hack into," the cybersecurity company said. <\/p>\n
Communication between these sensors and a laptop happens through a secure channel via the Secure Device Connection Protocol (SDCP) created by Microsoft.<\/p>\n
However, hackers have been able to "spoof" the communication between sensors and laptops. <\/p>\n
"They were able to fool the laptops using a USB device, which pretended to be its sensor and sent a signal that an authorized user had logged in," Malwarebytes said. <\/p>\n
<\/span><\/p>\n <\/span><\/p>\n <\/span><\/p>\n <\/span><\/p>\n In turn, the researchers from Blackwing noted that while SDCP is powerful, it can be useless if other parts of the setup are weaker. <\/p>\n "If you, as a user, are worried about anyone being able to get near your laptop with a USB device, you shouldn\u2019t be using fingerprints as an authentication method and disabled," Malwarebytes said. <\/p>\n To remove this feature, go to the Windows search bar and search Sign-in options.<\/p>\n From there click on Open and then select Fingerprint Recognition (Windows Hello).<\/p>\n After you have done that, click\u00a0Remove and the fingerprint sign-in option should be removed.<\/p>\n "Until the manufacturers have dealt with the weaknesses in their setups, we can\u2019t assume that this is a secure method of authentication," Malwarebytes warned. <\/p>\n Another type of authentication users can enable instead of fingerprint is a strong passcode.<\/p>\n Experts recommend a unique passcode that contains upper and lower-case letters, numbers, and symbols. <\/p>\n![](\"https:\/\/www.thesun.co.uk\/wp-content\/uploads\/2023\/11\/JW_GRACE_DENT_QUITS_V4_COMP.jpg\")
<\/picture>GRACE SPENT <\/span><\/p>\nGrace Dent QUITS I’m A Celeb ‘on medical grounds’ as fans spot moment she broke<\/h3>\n
![](\"https:\/\/www.thesun.co.uk\/wp-content\/uploads\/2023\/11\/newspress-collage-pehllqp9z-1701025738753.jpg\")
<\/picture>FOUND SAFE <\/span><\/p>\nGirl, 9, who vanished while walking a puppy has been ‘found safe and well’<\/h3>\n
![](\"https:\/\/www.thesun.co.uk\/wp-content\/uploads\/2023\/11\/RR-p9-v2-comp.png\")
<\/picture>FRENCH FANCY <\/span><\/p>\nNigel Farage\u2019s ‘secret’ lover WILL jet to jungle to support him on I\u2019m A Celeb<\/h3>\n
![](\"https:\/\/www.thesun.co.uk\/wp-content\/uploads\/2023\/11\/newspress-collage-jnaubemen-1701018260470.jpg\")
<\/picture>jungle fallout <\/span><\/p>\nI’m A Celeb fans spot feud as campmate accuses Sam Thompson of being fake<\/h3>\n
HOW TO STAY SAFE<\/h2>\n