German hacker group Chaos Computer Club (CCC) announced they've already figured out a way to break the new TouchID security feature of Apple's new iPhone 5s. In its advertising, Apple claims a fingerprint is one of the best passwords in the world, and touts TouchID is one of the most advanced hardware or software they've put in any device. However, CCC shows that TouchID is easily hacked in a similar fashion as other fingerprint authentication systems, the only difference is that you need a very high-resolution (2400dpi) photo of the fingerprint.
The technique is based on previous methods for spoofing fingerprint authentication systems, and needed only minor adaptation to be applied to the iPhone’s unusually high-resolution scanner. According to the CCC:
First, the fingerprint of the enrolled user is photographed with 2400 dpi resolution. The resulting image is then cleaned up, inverted and laser printed with 1200 dpi onto transparent sheet with a thick toner setting. Finally, pink latex milk or white woodglue is smeared into the pattern created by the toner onto the transparent sheet. After it cures, the thin latex sheet is lifted from the sheet, breathed on to make it a tiny bit moist and then placed onto the sensor to unlock the phone.