A vulnerability in older Amazon Echo devices can be used to make the home assistant relay conversations to eavesdroppers while the owner remains none the wiser.

Research by MWR InfoSecurity found it’s possible to turn an Echo into a covert listening device without affecting its overall functionality. One big limiting factor: the process does involve the attacker being able to gain access to the physical unit, but it’s possible to tamper with the Echo without leaving any evidence.

The vulnerability comes as a result of two design choices: exposed debug pads on the base of the device and a hardware setting which allows the device to boot from an external SD card. By exploiting these two features, the attacker can access the root shell on the Linux operating system and perform the attack.

Read more: This Amazon Echo hack can make your speaker spy on you, say security researchers | ZDNet

Don’t forget to share this via , Google+, Pinterest, LinkedIn, Buffer, , Tumblr, Reddit, StumbleUpon and Delicious.

Published by Mike Rawson

Mike Rawson has recently re-awoken a long-standing interest in robots and our automated future. He lives in London with a single android - a temperamental vacuum cleaner - but is looking forward to getting more cyborgs soon.

Leave a comment

Your email address will not be published. Required fields are marked *

This Amazon Echo hack can make your speaker spy on you, say security r…

by Mike Rawson time to read: 1 min
Hi there - can I help you with anything?
[Subscribe here]
More in News, The Home
Exposed IoT servers
Exposed IoT servers let hackers unlock prison cells, modify pacemakers | ZDNet

Lucas Lundgren sat at his desk as he watched prison cell doors hundreds of miles away from him opening and...