With the release of Jelly Bean, Google had improved their Face Unlock security system (first introduced in ICS) so that it couldn’t be bypassed by just putting a picture of the owner in-front of it. The did so by requiring users to blink, but even this can easily be spoofed through image editing.
In an effort to promote Face Recognition technology in attempt to abstain illegal use of the smartphone, Google had initiated a great start with the release of ICS to make life easier and securer for Android users, but with profile pictures easy to access through social networks, Face Unlock could easily be circumvented, which defeats the purpose of securing the lock screen in the first place.
By enabling Live Detection feature in Jelly Bean, Google stepped up it’s game to make it more difficult to bypass this hurdle, but with a bit of photo editing on the hacker’s part, Jelly Bean’s Face Unlock can be fooled to think that a blink has been done with simple photo editing.
All you have to do is : Get a recent picture of owner (Facebook is the best place for it) – Using photo editors like paint, cover the eyes with the same skin tone color – Flash the photos alternatively to simulate a blink.
Check out the video below for a sample of how Jelly Bean’s face unlock feature can be tricked.