Recently, the domestic smart speaker market has gradually become bustling, and Amazon Echo abroad is fast becoming a must for every household. However, connected devices will always have certain security risks. The smart speakers also play the role of smart home stewards, and once they are black, they are very serious. Recently, a British security researcher Mark Barnes demonstrated the technology of invading the old Amazon Echo.
Barnes used a flaw in the old Echo (Echo before 2017) to invade the system. The specific steps are as follows: Remove the base of Echo, and you will see some small metal pads at the bottom of the device. These metal pads are connected to the internal hardware of Echo and may be used to test or patch software bugs. With one of the metal pads, Echo can read the data on the SD card. Barnes used the above two metal pads to connect to computers and readers, respectively. Then he installed Echo with a new bootloader, turned off the system's security mechanism, and installed malicious software.
After invading the system, Barnes wrote a simple script to control the system's voice capabilities. He said that malicious software can also perform more destructive actions, such as eavesdropping, attacking other devices on the network, stealing user accounts, or installing ransomware.
The new Echo has fixed this problem, but the old Echo vulnerabilities cannot be fixed by software. However, malware cannot manipulate the mute button on Echo. If mute is turned on, he cannot open the voice via software.
It seems that the Echo must be blacked out, only by means of physical contact, and not so scary. Moreover, most of the old Echos have been eliminated. Just want to know that domestic smart speakers will also have loopholes.
2 in 1 usb adapter,USB Hubs,USB Hubs 3.0,docking station usb c,best usb hubs
Shenzhen Konchang Electronic Technology Co.,Ltd , https://www.konchangs.com