Eavesdropping and leakage of passwords, by Alexa and Google Home..!! | Hi Tech Blog |

After a long gap due to some problems, we are here again to provide you with updates of current technical news,gadgets and  lots more… Our Hi Tech Blog will now try to give regular updates and keep you updated, especially in the field of Technology…. 

Eavesdropping and leakage of passwords,  by Alexa and Google Home..!!

 Today, we would discuss about the eavesdropping of confidential passwords, Google Homeand Alexa are accused of leaking these passwords!

Eavesdropping-and-leakage-of-passwords-by-Alexa-and-Google-Home
Eavesdropping and leakage of passwords,  by Alexa and Google Home..!!
  Voice controlled devices now can be expressed as “smart spies”..Amazon and Google approved apps are responsible for this~!

Alexa and Google Home..!!..............................

We have previously shared our knowledge with you about the leakage of passwords from social medias, like FacebookQuora and lots more..And now these things are of common knowledge of most of the technically updated peoples! The privacy threats  posed by Amazon Alexa and Googlehome..everything! And of course, what we all users say using the voice command feature to give command to Alexa and Google home..Our voice are recorded and are kept forever. Google, which is the search engine used and appreciated by most of the peoples, always is hearing us! It’s one of the creepy facts and also the employees of both companies, Amazon and Google routinely listen to the audio of users and the sounds the devices capture can be used in criminal trials! Who Knows??.. 

Alexa and Google Home..!!..............................

Eavesdropping-and-leakage-of-passwords-by-Alexa-and-Google-Home
Eavesdropping and leakage of passwords,  by Alexa and Google Home..!!

       
With this, here comes the next problem.. About the malicious third party apps hosted by Amazon and Google! Now, this problem is not theoretical of course , because the White Hat Hackers of Germany’s security research lab developed 8 apps- 4 Alexa ‘skills’ and 4 Google Home ‘skills’..which passed all Amazon and Google security – vetting  processes. But, behind the scenes, these devices are always hearing users and eavesdropping passwords or other credential information. 

Alexa and Google Home..!!..............................

Eavesdropping-and-leakage-of-passwords-by-Alexa-and-Google-Home
Eavesdropping and leakage of passwords,  by Alexa and Google Home..!!
       
Fabian Braunlein , the senior security consultant at SRLabs told," It was always clear that those voice assistants have privacy implications- with google and Alexa receiving your speech, and this possibly being triggered on accidentally sometimes". The malicious apps designed, had different names but their kind of processing was similar. For ex. A user says a phrase that ,"Hey Alexa/Google, tell me about today’s weather!" ,and the eavesdropping apps responded with requested info. While the third party apps gave a fake error message. They gave impression to user as like they are no longer running but, they are always hearing and silently waiting for the next phase of attack!

Alexa and Google Home..!!..............................

Eavesdropping-and-leakage-of-passwords-by-Alexa-and-Google-Home
Eavesdropping and leakage of passwords,  by Alexa and Google Home..!!

      
All of the malicious apps used common building blocks to hide their actions. The app used other tricks to deceive users too. Now, on their defense, Google didn’t say what these additional mechanisms are. And a representative said that the employees are conducting a review of all third party apps available from Google.

Alexa and Google Home..!!..............................

It’s good that Amazon and Google removed the apps and are strengthening their review process to avoid the same thing again! But Google Play apps  has long history of hosting  malicious third party apps that push sophisticated surveillance !!But there is little or no evidence at all that the third party apps have been threatening users now, but SRLabs suggested that possibility is not zero. They just recommend that these devices should not be trusted 100%!  

Hi Tech Blog

  • Image
  • Image
  • Image
  • Image
  • Image
    Blogger Comment
    Facebook Comment

0 comments:

Post a Comment