I think this is the biggest use case to consider here, as you have to both have access to the owner’s fingerprints as well as the iPhone in question. With these methods, an ethically challenged police force could bring you in as a suspect, charge you with a bogus claim such as burglary, and take your phone and your fingerprints. After they make the faker fingerprint and unlock your phone, they can read your mail, messages, and so on. Then they drop the charge, and let you go whilst they sort through the data dump.
I would suspect this more than I would that some band of scammers or thieves would clean out my accounts with my fingerprint. It’s something to consider if you’re a friend of Glen Greenawald or attend an Occupy demo.
