02 Aug Researchers Warn Amazon Echo Speakers Can be Hacked to Spy on Users
Researchers from MWR InfoSecurity are warning customers that Amazon Echo speakers can be hacked to make its home assistant listen to conversations without affecting its other functions.
MWR InfoSecurity stated that attackers can take advantage of two design flaws, the hardware setting configuration and the speaker’s external debug base pads. Hackers can simply place a device on the pads while nobody is looking. After a few minutes, the attacker can remove it, making it possible not to leave any physical evidence.
Vulnerable models of the Amazon Echo include the 2015 and 2016 units, while the Amazon Dot and the 2017 model cannot be compromised in this manner.
To be safe, regardless of whether the speaker was compromised, users should always turn on the mute mode to disable the microphone.
A spokesperson from Amazon advised customers to buy new speakers from accredited dealers, install regular updates, and avoid lending units.
Source: ZD Net