From: Michael Brody, DPM
Even though secure and convenient, biometric password authentication requires and stores sensitive and unique information about individuals, like fingerprints and facial features. The risk of identity theft and fraud might significantly increase if this data falls into the wrong hands.
Biometric data is 'static'; it does not change. Once you use biometric data for login, that data is stored in your computer so that your computer can recognize you. If your computer is hacked, hackers now have your biometric data which can be utilized to break into your accounts. Here are some links to events of breaches of biometric data:
which appropriately points out breaches, the biggest disadvantages of biometrics, because biometric data can't be changed. So, if your password is hacked, you can change your password. If your security key is hacked, you can get a new security key. You cannot change your biometric data so once a hacker has it, they always have it. That is why I am not a fan of using biometric data for security purposes.
Michael Brody, DPM, Commack, NY