Tag

Windows Hello

All articles tagged with #windows hello

technology1 day ago•4 min saved

Windows 11 May 2026 preview update boosts performance and sign-in reliability

Microsoft released the May 2026 non-security preview update KB5089573 for Windows 11 25H2 and 24H2, delivering about 30 changes focused on performance and reliability—faster app launches, smoother Start/Search/Action Center experiences, and improved Windows Hello sign‑in behavior. The optional update can be installed via Windows Update or the Microsoft Update Catalog and upgrades affected devices to builds 26200.8524 (25H2) and 26100.8524 (24H2). Highlights include Shared Audio, improved VM CPU speed readings in Task Manager, better HID battery life and standby power hygiene, and updated Secure Boot certificates as part of a broader security refresh. A related server issue was noted for Windows Server 2016 after a different May 2026 security update.

via BleepingComputer|

#kb5089573 #performance-improvements #secure-boot

technology1 month ago•5 min saved

TotalRecall Reloaded reveals a hidden data path in Windows 11 Recall after login

Security researcher Andrew Hagenah’s TotalRecall Reloaded tool demonstrates that, once a user authenticates with Windows Hello, Recall data can be intercepted via AIXHost.exe, allowing retrieval of recent screenshots, OCR text, and metadata, and even deletion of the Recall database — all without admin rights. Microsoft says this isn’t a vulnerability and won’t be fixed, but Recall remains a significant local-access privacy risk for anyone who can reach a user's PC.

via Ars Technica|

#aixhostexe #privacy-risk #recall-feature

technology2 months ago•3 min saved

Entra passkeys enable phishing-resistant sign-ins on Windows

Microsoft is rolling out Entra passkeys on Windows to enable phishing-resistant, passwordless sign-in via Windows Hello. The opt-in public preview runs mid-March to late April 2026 for worldwide tenants (government-cloud timelines differ) and extends passwordless sign-in to unmanaged Windows devices. Passkeys are device-bound and per-account (no cross-device syncing), with multiple accounts able to coexist on one machine; each Entra account must register its own passkey. Admins must enable Passkeys (FIDO2) in Entra, create a Windows Hello profile with required AAGUIDs, and assign it to groups.

via BleepingComputer|

#fido2 #microsoft-entra #passkeys

technology3 months ago•43 min saved

Windows 11 February 2026 update brings external Windows Hello devices, faster file navigation, and smarter voice controls

The February 2026 Windows 11 update is rolling out via the Release Preview channel with a Stable Channel deployment expected soon. It adds Enhanced Sign-in Security that supports external Windows Hello fingerprint readers, speeds up File Explorer when navigating network locations, introduces a guided Voice Access setup wizard, and adds a Wait time option for Voice Typing. Microsoft advises backing up beforehand (create a system restore point and full backup) due to ongoing update quality issues and potential uninstall difficulties from the January 2026 patch.

via Windows Central|

#file-explorer #technology #voice-access

technology11 months ago•1 min saved

Windows Hello Facial Recognition Fails in Darkness

Microsoft has disabled the facial recognition feature of Windows Hello in dark rooms following a security vulnerability fix, requiring visible light for face detection, which impacts users' ability to unlock their devices in low-light conditions.

via The Verge|

#dark-room #facial-recognition #microsoft-update

technology11 months ago•2 min saved

Microsoft Limits Windows Hello Face Unlock in Low Light for Security

Microsoft has updated Windows Hello to require visible face detection via webcams, disabling its ability to work in the dark with IR sensors alone, due to a security vulnerability, which users can workaround by disabling their webcams, but this reduces functionality for video calls.

via Windows Central|

#dark-environment #face-unlock #ir-sensors

technology1 year ago•2 min saved

Microsoft's Recall AI Feature Enters Public Preview for Windows Insiders

Microsoft's Recall scraper, which has faced delays due to security concerns, is now in public preview. The feature is opt-in, requires re-authentication with Windows Hello, and includes enhanced encryption and data masking. It can be uninstalled if desired. Initially, Microsoft planned to release Recall without the usual Windows Insider testing, raising security concerns. However, the company is now prioritizing security, with CEO Satya Nadella emphasizing the importance of secure launches over quick ones.

via Ars Technica|

#ai #microsoft #recall

technology2 years ago•3 min saved

"Securing Chrome Passwords with Windows Hello: A Step-by-Step Guide"

Windows Hello can be used to secure Chrome passwords on Windows PCs by requiring a PIN or biometric authentication before filling in login forms. To enable this feature, users need to verify that Windows Hello is set up on their PC, head to Chrome's settings, and turn on Windows Hello protection in Google Password Manager settings. While using Chrome's built-in password manager can be convenient, it's recommended to consider using an independent password manager for added security, and to also utilize antivirus software and strong authentication methods to safeguard against potential threats.

via PCWorld|

#authentication #chrome #passwords

technology2 years ago•3 min saved

Windows Hello Fingerprint Authentication Vulnerabilities Exposed

Security researchers have discovered vulnerabilities in the top three fingerprint sensors used in Dell, Lenovo, and Microsoft laptops, allowing them to bypass Windows Hello's fingerprint authentication. The researchers were able to build a USB device capable of deploying a man-in-the-middle attack, granting unauthorized access to stolen or unattended devices. The vulnerabilities were found in Goodix, Synaptics, and ELAN fingerprint sensors. Microsoft's SDCP protection was not enabled, making the bypass possible. Users are advised to enable SDCP protection as a precautionary measure.

via Windows Central|

#biometric-devices #fingerprint-authentication #sdcp-protection

technology2 years ago•6 min saved

Windows Hello Fingerprint Authentication Vulnerability Exposes Laptop Security Risks

Researchers have discovered vulnerabilities in Windows Hello's fingerprint authentication system that allow attackers to bypass the security feature on certain laptops. The vulnerabilities were found in the fingerprint sensors of Dell Inspiron 15, Lenovo ThinkPad T14, and Microsoft Surface Pro 8/X devices. The attacks involve manipulating the communication between the sensor chip and the operating system, allowing attackers to log in as a different user. The researchers recommend device makers to address these design flaws and for users to check for updates or firmware fixes.

via The Register|

#fingerprint-authentication #hardware-security #laptop-security

technology2 years ago•2 min saved

Windows Hello Fingerprint Security Bypassed on Major Laptop Brands

Security researchers have discovered vulnerabilities in the embedded fingerprint sensors of Dell Inspiron, Lenovo ThinkPad, and Microsoft Surface Pro X laptops, allowing them to bypass Windows Hello fingerprint authentication. The researchers successfully exploited security flaws in the fingerprint sensors made by ELAN, Synaptics, and Goodix, using man-in-the-middle attacks and custom Linux-powered devices. Despite Microsoft's Secure Device Connection Protocol (SDCP), which was designed to protect the communication between the fingerprint device and the host, the researchers found that SDCP was not enabled on two out of three of the targeted laptops. They recommend that vendors enable SDCP to enhance the security of biometric authentication solutions.

via BleepingComputer|

#biometric-authentication #fingerprint-authentication #laptop-security

authentication-security-windows2 years ago•3 min saved

Researchers Discover Critical Vulnerabilities in Windows Hello Fingerprint Authentication

Researchers have discovered vulnerabilities in the fingerprint sensors of Dell Inspiron 15, Lenovo ThinkPad T14, and Microsoft Surface Pro X laptops, which could allow attackers to bypass Windows Hello authentication. The flaws were found in the fingerprint sensors from Goodix, Synaptics, and ELAN, all of which are "match on chip" (MoC) sensors. The vulnerabilities include sensor spoofing, cleartext transmission of security identifiers, and the lack of support for the Secure Device Connection Protocol (SDCP). To mitigate these attacks, it is recommended that OEMs enable SDCP and have the fingerprint sensor implementation audited by independent experts.

via The Hacker News|

#authentication-security-windows #biometric-authentication #device-security

technology2 years ago•2 min saved

"Security Breach: Windows Hello Fingerprint Authentication Vulnerability Exposed"

Security researchers at Blackwing Intelligence have discovered vulnerabilities in the fingerprint sensors of laptops from Dell, Lenovo, and Microsoft, which are commonly used for Windows Hello fingerprint authentication. The researchers found flaws in popular fingerprint sensors from Goodix, Synaptics, and ELAN, allowing them to bypass Windows Hello protection. The vulnerabilities involved cryptographic implementation flaws and the decoding and reimplementing of proprietary protocols. This is not the first time Windows Hello biometrics-based authentication has been defeated, and it remains unclear if Microsoft will be able to fix these latest flaws alone. Blackwing Intelligence recommends enabling Secure Device Connection Protocol (SDCP) and auditing fingerprint sensor implementations.

via The Verge|

#biometrics #fingerprint-authentication #microsoft

technology2 years ago•2 min saved

"Google Passkeys: The Future of Account Security and Password-Free Access"

Windows 11 now allows users to create passkeys for signing in to apps and services, including Google accounts, without using a password. This feature, integrated with Windows Hello, provides a more secure and convenient way to access accounts and makes it harder for malicious individuals to steal credentials. Users can generate and save a passkey for their Google account through the Chrome or Edge browser, and can delete the passkey from Windows 11 settings if needed.

via Windows Central|

#authentication #google-account #passkeys

technology2 years ago•1 min saved

Windows 11 Introduces Convenient Passkeys for Secure Website and App Access

Microsoft is enhancing Windows 11's support for passkeys, a new standard aimed at replacing passwords for secure and convenient logins. The recent Insider Preview Build allows users to create and sign in to supported applications and websites using passkeys, which can be authenticated through a PIN, fingerprint, or face scan via Windows Hello. While Microsoft's Edge browser has supported passkeys for years, integrating it with Windows Hello simplifies credential management at the operating system level. Apple and Google have also added passkey support to their respective platforms, signaling a growing adoption of passwordless authentication.

via The Verge|

#passkeys #passwordless-authentication #technology