Authentication by fingerprint is a retrograde step, in my view.
The fingerprint has to be stored (in theory that can be hashed and encrypted, but recent events prove you Shouldn't Trust Storage Companies (one of the major players in this market was storing fingerprint unhashed in unencrypted databases). If your fingerprint is stolen, you can't change it (unlike a password). Your security is now compromised for life. You are screwed.
The two-step offline authentication involving a card reader + chip and pin is very secure. It is just isn't convenient. It is a pain in the ass. It is very secure.
Sadly, the lack of convenience means that companies will switch over to something more convenient, like fingerprint and facial recognition.