I mean like, after I type a password on a computer, I’d rub my fingers across the entire keyboard to make sure any fingerprints/oil-residues gets evenly distributed so its harder to know the password. Same with phone unlock codes, I just use my fingers to rub against the part of the screen where the virtual keyboard was displayed.
Am I being weird? I’ve had this habit since the first time I got my first digital electronics.
I’ve never heard of that being used to steal a password—for one thing, it wouldn’t reveal the order in which you pressed the keys, so it would still leave n! possibilities (24 possibilities for a 4-digit pin, or 40,320 for an 8-letter password). And in any case, if someone were to examine the keys afterward, it’s more likely they could see which keys you wiped if you just wiped the ones you used (and if you wiped all of them, it would make it easier to steal the password of the next user).
The bigger thing to worry about is a hidden camera recording your key presses—and to counter that, I position my fingers over all the keys I’ll use and then move all my fingers with each press, so it’s harder to see which key was key was actually pressed.
I think the concern is overblown. The time it would take to try possible combinations would look very suspicious, at least at the ATMs which are embedded into actual banks in my area.
With that said, I pretend to press a few random keys whenever I use my debit card pin.
Keylogging says hi 👋
The only case I would imagine someone trying to guess/brute force the PIN using fingerprints is some sort of state level actor trying to gain access, e.g. during a search warrant
https://www.youtube.com/watch?v=8Vc-69M-UWk
@henfredemars@infosec.pub