[aeternum]

Remember when Apple claimed similar about their CSAM photo-scanning but then it turned out it was pretty easy to generate a hash collision?

AFAIK Apple has not opened their TouchID hash scheme so you must take them at their word that it cannot be reverse engineered.

[thebean11]

Sure, I think there are a million attack vectors for getting these "orbs" to send the same person money multiple times. Crafting a face that doesn't generate a hash collision (which would be the goal here) is probably an even easier problem!

I'm just pointing out that perceptual hashes do exist.