New Way Found to Use Alexa, Google to Voice Phish and Eavesdrop on Users

So called "Whitehat" hackers at German Security Research Labs (SRLabs) have come up with a new way to use Amazon's Alexa and Google's Smart Home Assistant to eavesdrop or even to phish an attack to gain sensitive user information.

The attack is in fact using the well-known concept of an application developed by external developers.  

For this purpose researchers have created four Alexa's "skills" and four Google Home "actions". All eight passed the security check at both companies, as they usually only check the first version of each product, not further upgrades.

These were basic applications, one of them, for example, a horoscope, and the other a random number generator, all of which acted on the same principle with regard to misleading users.

Shared On DLIKE

---