He might have been joking, but my first thought was of college dorm mates. Oh man did we use to play tricks on sleeping people. heh heh
If TouchId had been around back then, there's not a doubt in the world that we would have tried using it on some poor sucker
It is hardly slim to none. Plenty of YouTube videos show people spoofing TouchID on their first attempt with a print they made from easily obtainable materials.
Just because the methods seem difficult to you, does not make it seem difficult to those of us with circuit board or modeling experience. Or anyone with the ability to follow instructions.
While it's possible those YouTube videos do show actual spoofing... Overall, they're click-bait, and have to be taken with a grain of salt. The comment about circuit board or modeling experience holds true for video production as well.
One of the first rules of slight-of-hand and con games... people see what you tell them they're seeing.