The Suspicion Becomes Real: Hackers Can Take Control of Alexa and Listen to You

by
martyb
from SoylentNews on (#5WVZK)

upstart writes:

The suspicion becomes real: hackers can take control of Alexa and listen to you:

This is a novel method of taking control of a person's Echo speaker. "An attacker could then use this listening function to set up a social engineering scenario where the skill pretends to be Alexa and responds to user statements as if it were Alexa," vulnerability researcher Sergio Esposito told The Register.

Amazon has already patched most of the vulnerabilities, except for one in which a Bluetooth-paired device was able to play audio files created through a vulnerable Amazon Echo speaker, Esposito confirmed. A vulnerability tracked as CVE-2022-25809 which has been assigned a Medium severity level .

Paper (pdf) at arxiv.org.

YouTube video demonstrating an attack.

See also: Ars Technica.

Original Submission

Read more of this story at SoylentNews.

External Content
Source RSS or Atom Feed
Feed Location https://soylentnews.org/index.rss
Feed Title SoylentNews
Feed Link https://soylentnews.org/
Feed Copyright Copyright 2014, SoylentNews
Reply 0 comments