Phone

Is your Galaxy Note 10/S10 fingerprint reader safe? Here’s how to find out

There’s been a bit of a security scare recently for Galaxy S10 and Galaxy Note 10 owners, as it was discovered that the in-display fingerprint reader on these flagships can be fooled when certain silicon cases that cover both the front and back of the device are used. Such cases have a textured pattern that can be recognized as a fingerprint instead of the user’s actual fingerprint, and that allows anyone to unlock the device by simply pressing down on the fingerprint reader.

This particular vulnerability only becomes a problem if someone registers their fingerprint on their Galaxy Note 10/10+/10 5G/10+ 5G or Galaxy S10/S10+/S10 5G for the first time with such a case installed, but it’s still a serious flaw that Samsung quickly acknowledged. The Korean giant announced that it would soon be patching the issue via a biometrics update over the air, and that update is now available worldwide for all Galaxy S10 and Note 10 owners.

The biometrics update will show up as a notification that will not go away until you have installed it. The notification, as you can see in the screenshot below, is called Performance and security – just tap it and then hit the Update button to install the biometrics update. However, just installing it is not going to be a complete safeguard against the vulnerability; there are a couple of other things you need to do.

Restart phone, then delete and register your fingerprint(s) again

The first thing you should do once the update is installed is restart your phone. Then, whether your previously registered fingerprints were added with a silicon case installed on the screen or without the case installed, you should proceed to delete them all from your phone.

To do that, open the Settings app, navigate to Biometrics and security, then tap Fingerprints and enter your PIN/password/pattern to see all your registered fingerprints. Tap and hold on one of the fingerprints, select all fingerprints, then tap the Remove button on top to delete them.

Then, make sure you don’t have a silicon case installed and register your fingerprint on the device again by tapping the Add fingerprint option. As Samsung notes, it’s best to scan all the edges of your finger when registering a fingerprint for the best protection. And, well, it’s best to stop using cases that cover the top of your device and simply opt for an official screen protector from Samsung.

How to be sure you have the necessary biometrics update installed

Once you have deleted your fingerprints and added them again, if you want to make sure that the necessary biometrics update is actually installed on your Galaxy S10 or Galaxy Note 10, here’s what you need to do. Open the Settings app on your phone, navigate to Biometrics and security, then tap the Biometrics preferences option. Here, check the version number listed in front of the word Fingerprints at the bottom.

As shown in the screenshot below, on Android Pie, the version number should be 2.0.24.20 for your device to be safe against the fingerprint vulnerability. If you’re testing the Android 10 beta, the version number should be 5.0.0.1. If the version numbers are different, it means you have not installed the biometrics update, in which case you should check your notification shade and do the needful, then follow all the advice we have given above.

12 Comments

Sign in »

12
Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

gentux
gentux

I didn’t have that protector but I got the update nonetheless. It all worked except Samsung Pay, it wouldn’t allow the use of fingerprints until I manually deleted all fingerprints and reregister them. It wasn’t obvious though why, it just said no match five times and asked for the PIN.

jerrytko
jerrytko

for some reason i still haven’t got the update. so typical. 3 registered fingerprints and nothing.

ashireland
ashireland

I installed the patch yesterday and I just checked my fingerprint version and it is version Fingerprint 2.0.16.12. I am using the Note 10+ 5G unlocked. Is this the wrong version even though the phone updated yesterday? Thanks

kingrohan
kingrohan

Hey Abhijeet, How can I get the update if I dont have any registered fingerprint.
I only use fingerprint while I am travelling.
As stated by Samsung, only those who have registered their fingerprints, will get the update.
Isn’t that partiality..???

martindale
martindale

I think you already know the answer to this one. Travel.

kingrohan
kingrohan

What do you mean..???
Sorry I am not smart enough to understand that.

martindale
martindale

“only those who have registered their fingerprints, will get the update.”
“I only use fingerprint while I am travelling.”

So travel.
When you travel you will use (hence must register) a fingerprint, like you say.
When you register a fingerprint you will get the update, like you say.

Mario387
Mario387

Well maybe it checks for updates only if you got fingerprint registered. And the app is running. Not running no checking.

So register a finger, update, remove finger.

Or likely next big security update will include it for those not yet updated.

kingrohan
kingrohan

Which app..???

martindale
martindale

No app. Just register a fingerprint already.

kingrohan
kingrohan

I have registered it, I am using it since 2 days.
But I didnt receive any update.
I have manually checked for update on the galaxy store, members app and the software update as well.
I guess I missed the update.

Thats what I was talking about.
Samsung being partial.

faisalis10
faisalis10

I’m also yet to receive the update