Get all your news in one place.

100’s of premium titles.
One app.

Get all your news in one place.

100’s of premium titles. One news app.

Axios

Joe Uchill

Researchers find new way for Alexa and Google Voice to phish users

Photo: Olly Curtis/Future via Getty Images

A newly discovered variation of an old technique might make it easier for hackers to convince inattentive users of Google Voice and Alexa smart speakers to cough up their passwords.

The big picture: The security flaw was discovered by SRLabs and was first reported by ZDNet, but it has not been witnessed in use by actual hackers. Google has already announced closing the flaw.

What's happening: With smart speakers, it's tough to tell if an application is still open after it stops speaking. Researchers have, over the years, discovered several ways to force smart speakers to stop talking for a few minutes — making it appear as though an app has closed — before sending a message requesting a user to reenter their password. At this point, it seems like it's Google and not an app asking for the info.

In the SRLabs case, adding the "�" character to various commands allowed programmers to keep an app open much longer than it should be.
Smart speakers frequently have a light or other notification to show that an app is still running. That's useful if a user thinks to look for it and is nearby, but easy to overlook during a hectic day.

Sign up to read this article

Read news from 100’s of titles, curated specifically for you.

Already a member? Sign in here

Top stories on inkl right now

Iranian women's football players who refused to sing national anthem are granted humanitarian visas in Australia

Iranian women's football players who refused to sing national anthem are granted humanitarian visas in Australia

‘Australians have been moved by the plight of these brave women,’ Prime Minister Anthony Albanese told a news conference in Canberra

Evening Standard

12-Year-Old Dies from Brain Injury After School Fight in Georgia — Video of Physical Altercation Circulates Online

12-Year-Old Dies from Brain Injury After School Fight in Georgia — Video of Physical Altercation Circulates Online

Jada West, a 12‑year‑old Mason Creek Middle School student in Douglas County, Georgia, died from a brain injury after an after‑school fight that began on a school bus.

International Business Times UK

Australia grants asylum to five Iranian women footballers

Australia grants asylum to five Iranian women footballers

Players escorted to safe location in Australia as government finalises humanitarian visas

The Independent UK

Trump news at a glance: president issues an ultimatum to Congress to get voter ID bill passed

Trump news at a glance: president issues an ultimatum to Congress to get voter ID bill passed

Trump is also pushing for the Save America Act to includes provisions to limit transgender youth’s access to care and banning trans women athletes in women’s sports – key US politics stories from Monday 9 March at a glance

The Guardian - US

One subscription that gives you access to news from hundreds of sites

Already a member? Sign in here

Trump claims Iran or ‘somebody else’ could have carried out deadly school strike

Trump claims Iran or ‘somebody else’ could have carried out deadly school strike

President makes evidence-free claim despite video showing US Tomahawk missile hit naval base next to school

The Guardian - US

Beloved teacher and a father killed in shooting at bar in Oakland, California

Beloved teacher and a father killed in shooting at bar in Oakland, California

Victims remembered as ‘cherished’ and ‘devoted’ after shooting at EZ’s Lounge that injured five others on Saturday

The Guardian - US

Related Stories

Top stories on inkl right now

Iranian women's football players who refused to sing national anthem are granted humanitarian visas in Australia

Iranian women's football players who refused to sing national anthem are granted humanitarian visas in Australia

‘Australians have been moved by the plight of these brave women,’ Prime Minister Anthony Albanese told a news conference in Canberra

Evening Standard

12-Year-Old Dies from Brain Injury After School Fight in Georgia — Video of Physical Altercation Circulates Online

12-Year-Old Dies from Brain Injury After School Fight in Georgia — Video of Physical Altercation Circulates Online

Jada West, a 12‑year‑old Mason Creek Middle School student in Douglas County, Georgia, died from a brain injury after an after‑school fight that began on a school bus.

International Business Times UK

Australia grants asylum to five Iranian women footballers

Australia grants asylum to five Iranian women footballers

Players escorted to safe location in Australia as government finalises humanitarian visas

The Independent UK

Trump news at a glance: president issues an ultimatum to Congress to get voter ID bill passed

Trump news at a glance: president issues an ultimatum to Congress to get voter ID bill passed

Trump is also pushing for the Save America Act to includes provisions to limit transgender youth’s access to care and banning trans women athletes in women’s sports – key US politics stories from Monday 9 March at a glance

The Guardian - US

One subscription that gives you access to news from hundreds of sites

Already a member? Sign in here

Trump claims Iran or ‘somebody else’ could have carried out deadly school strike

Trump claims Iran or ‘somebody else’ could have carried out deadly school strike

President makes evidence-free claim despite video showing US Tomahawk missile hit naval base next to school

The Guardian - US

Beloved teacher and a father killed in shooting at bar in Oakland, California

Beloved teacher and a father killed in shooting at bar in Oakland, California

Victims remembered as ‘cherished’ and ‘devoted’ after shooting at EZ’s Lounge that injured five others on Saturday

The Guardian - US

Our Picks

Dakota Johnson's Calvin Klein Ads Sparks Debate On Naked Dressing: Here Are Other Artists Who Went The Same Route

Dakota Johnson's Calvin Klein campaign reignites debate over 'naked dressing', as fans react while similar celebrity ads continue trending worldwide.

International Business Times UK

Tommy DeCarlo Cause of Death: Inside the Illness That Ended the Boston Singer's Remarkable 'Fan-to-Frontman' Journey

Discover Tommy DeCarlo's legacy, battle with brain cancer, and the lasting impact he left on rock music and fans worldwide

International Business Times UK

UFO Cover-up on Google Earth? Alleged New Images Suggest Secret Crash Sites Hidden From Public

The mystery of altered Google Earth images in New Mexico, California, and Baja, sparking debates over hidden UFOs and satellite imagery modifications.

International Business Times UK

After training in deep snow and bitter cold, ex-reality show star seeks to win the Iditarod again

The winner of last year's Iditarod Trail Sled Dog Race in Alaska says he's feeling intense pressure to repeat as champion

The Independent UK

Spider-Noir showrunner says the goal is "to make a version of Spider-Man that no one had seen before," clarifying it's the "same character, different universe" from the Spider-Verse variant

Spider-Noir showrunner says "It's not a continuation of Into the Spider-Verse"

Tracee Ellis Ross Gives the Ponytail a High-Fashion Upgrade

Three ponys are better than one.

Fourteen days free

Download the app

One app. One membership.
100+ trusted global sources.

Download on the AppStore

Get it on Google Play