How secure is your Alexa?
Researchers have discovered new vulnerabilities in these home assistant devices that would allow them to self-issue commands, to open doors, tamper with smart devices, and listen to your conversation.

The original report was released in February:
https://arxiv.org/pdf/2202.08619.pdf

And a great new article in Ars Technica summarized the findings well:
https://arstechnica.com/information-technology/2022/03/attackers-can-force-amazon-echos-to-hack-themselves-with-self-issued-commands/

We go into details of the possible hacks with one of the researchers, Sergio Esposito, and with the author of the Ars Technica report, Dan Goodin.

0:00 Show Pre-roll
0:48 Intro and Overview
2:37 Dan Goodin: Alexa vulnerabilities
4:19 Alexa in the wild
6:48 "Humans are really bad at assessing real-world risks..."
11:11 "These are 'flies on the wall'..."
11:40 Other Alexa vulnerabilities
17:17 Solutions?
19:04  Researcher Sergio Esposito
20:55 How the hack works
27:10 How do we mitigate the security holes?
33:17 Security threat is "medium" severity.
38:42 Funny YT comments
40:50 Twitter poll: Would YOU own an Alexa??
44:56 Privacybeat Quiz Winner: Ramzi!
49:00  Show Out and Thanks

Brought to you by NBTV members: Sam Ettaro, Will Sandoval, and Naomi Brockwell

To support NBTV, visit https://www.nbtv.media/support
(tax-deductible in the US)

Sign up for the free CryptoBeat newsletter here:
https://cryptobeat.substack.com/

Beware of scammers, I will never give you a phone number or reach out to you with investment advice. I do not give investment advice.

Visit the NBTV website:
https://nbtv.media

Support the show