We’ve known since the spring of last year that Amazon Alexa and Google Home smart speakers can eavesdrop on owners, and even phish them via voice. However, new research shows that new malicious apps with these capabilities continue to be approved by both companies.
The two vulnerabilities – demonstrated in videos below – occur because both companies make their speakers smarter by allowing third-party developers to create apps or ‘skills’ for them. Apple’s HomePod is safe because the company doesn’t allow this type of third-party access …
more…