Press "Enter" to skip to content

Alexa hack granted attackers access to an Echo user's smart home network

A number of vulnerabilities have been revealed in Amazon’s Alexa, highlighting the need for providers of smart home platforms, such as Apple’s HomeKit, to maintain security as part of the service.The concept of a smart home is attractive, but the dream of ordering a virtual assistant around to automate household tasks becomes a nightmare once security issues surface. In the case of Amazon’s Alexa, which is at the heart of many people’s smart home setup, vulnerabilities have been revealed that could allow an attacker to perform tasks and to find out what a user has told Alexa.The report from Check Point Security researchers reveals a number of Amazon and Alexa subdomains were vulnerable to a Cross-Origin Resource Sharing (CORS) misconfiguration and Cross Site Scripting (XSS). By using XSS, an attacker would be able to acquire a CSRF token that would provide them access to elements of the smart home installation. Read more…
Source: Apple Insider News and Secrets on New Apple Products

Be First to Comment

Leave a Reply

Your email address will not be published. Required fields are marked *

%d bloggers like this: