Home Devices Part 2

Last week we talked about how home devices such as Google Home and Amazon Echo keep listening after you think you have stopped. There is more.

The same company, Security Research Labs, has more testing they have done. This time, they tested Google Home and Amazon Echo with actions/skills called Lucky Horoscope made just to show how the devices can be used by hackers for phishing. When asking for Lucky Horoscope they created to show this, the user is given an error that tells the user the action/skill is not available in their country. It waits a little while and then says there is an update. It then asks for the user’s password and records it. The hacker now has the user’s email and password.

Google Home:

Amazon Echo: