Skip to main content

Cortana flaw enables hackers to load malicious websites from the lock screen

Two independent Israeli researchers recently discovered that anyone with access to a Windows 10 PC could use Cortana and a USB-based network adapter to download and install malware even if the machine remained locked. This was accomplished using voice commands directed to Cortana, which could load up a malicious website in a browser without unlocking Windows. The PC could also be moved to a wireless network controlled by the hacker. 

The two researchers, Tal Be’ery and Amichai Shulman, presented their method in a session called, “The Voice of Esau: Hacking Enterprises Through Voice Interfaces” during the Kaspersky Analyst Security Summit in Cancun, Mexico, last week. Their attack relied on Cortana’s ability to keep the microphone active at all times to receive voice commands, especially PCs that aren’t restricted to a single user’s voice. The attack also required physical access to the target PC. 

Recommended Videos

In their scenario, a hacker could sit down in front of a locked Windows 10 PC and insert a network adapter into one of the USB slots. After that, the hacker could verbally tell Cortana to open the web browser and head to any specific HTTP-based address that doesn’t rely on a secure connection (HTTPS means the connection is encrypted). The inserted adapter receives the outgoing command but directs the web browser to a malicious website instead. 

Please enable Javascript to view this content

The malicious destination is designed to download malware to the machine even though it’s still locked. After that, the PC is at the mercy of the hacker. As previously stated, a hacker with physical access to the Windows computer can switch to a wireless, malicious network through the USB adapter: just click on the destination using a mouse even though the PC remains locked. 

Windows 10 provides several settings regarding Cortana. For starters, device owners can toggle on or off the ability for the virtual assistant to respond to the “Hey Cortana” voice command. There is also a checkbox to prevent the device from sleeping when it’s plugged in so Cortana can respond to commands. Most importantly, there are two main settings for voice command acceptance: Let Cortana respond to anyone or lock Cortana to one specific voice. 

That is not all. There is a specific setting for the lock screen, enabling users to enable or disable voice commands while the PC remains locked. Windows 10 also provides a keyboard shortcut you can toggle to disable or enable Cortana commands after pressing the Windows logo key and the “C” key simultaneously.  

“We still have this bad habit of introducing new interfaces into machines without fully analyzing the security implications of it,” Be’ery said. “Every new machine interface that we introduce creates new types of vehicles to carry an attack vector into your computer.” 

Ultimately, Microsoft resolved the issue discovered by Be’ery and Shulman. Browser-based commands made to Cortana on the lock screen now go directly to Bing, the company’s search engine. But because Cortana responds to other commands, the duo is currently investigating how these commands can be used for malicious purposes as well. 

Kevin Parrish
Former Digital Trends Contributor
Kevin started taking PCs apart in the 90s when Quake was on the way and his PC lacked the required components. Since then…
High-Tech, High-End: Must-Have Luxury Tech Gadgets to Gift This Holiday
Level Up Their Tech, But Make It Luxe
luxury tech gadgets best gifts

Luxury tech gifts are the ultimate way to impress. Combining innovation, practicality, and indulgence, they can also be thoughtful, if not showstopping. This year, we’ve curated an extraordinary selection of luxury tech gadgets and devices that deliver cutting-edge tech while adding a touch of luxe to everyday life. They're not just tools -- they're experiences designed to elevate and inspire your gift recipient’s life.

Whether you’re shopping for a coffee connoisseur, a fitness enthusiast, or the ultimate tech junkie, there’s a luxury tech gadget on our list for anyone you're shopping for. Imagine gifting the sleek Terra Kaffe for barista-quality drinks at home or the Meta Quest 3S for immersive virtual adventures. For the audiophile, Focal’s high-fidelity headphones redefine sound quality, while the Hydrow Core Rower offers an immersive fitness adventure like no other. Even cat parents and homebodies can indulge in next-level convenience with the Litter-Robot 4 or Shark PowerDetect vacuum.

Read more
The Lenovo Legion 5i with RTX 4060 is 37% off for Cyber Week
The Lenovo Legion 5i laptop with the Legion logo on the screen.

Often the home of great gaming laptop deals, Lenovo has a particularly great one for anyone keen to game in style this holiday season. Today, you can buy the Lenovo Legion 5i with a 16-inch screen for just $1,121, meaning you’re saving 37% or $669 off the regular price. It's a hefty price cut, but it’s worth remembering that Lenovo’s estimated value system means that sometimes the original price is optimistically high. But the discounted price is still great either way. One of the better laptop deals around, the Lenovo Legion 5i looks great and packs plenty of punch for the price. Here’s why you’ll want it.

Why you should buy the Lenovo Legion 5i
Lenovo is one of the best gaming laptop brands around and my personal favorite of the bunch. Having owned an older Lenovo Legion laptop for a number of years, I’d happily recommend the range for anyone seeking a reliable gaming laptop. With the Lenovo Legion 5i, you get a great upgrade to my four-year-old Lenovo Legion. It has a 14th-generation Intel Core i7-14650HX CPU and it’s teamed up with 16GB of RAM and 1TB of SSD storage. The highlight here is its Nvidia GeForce RTX 4060 graphics card with 8GB of dedicated VRAM. It’s the best graphics card in this price range dodging the downfall of the weaker 4050 GPU.

Read more
Experiment showcases 3D dental scanner capable of running Counter-Strike: Source
Counter Strike: Source running on a 3D dental scanner

One would assume that medical equipment is not as capable as a modern PC. However, in a surprising and creative tech experiment, Redditor u/AfternoonPutrid8558 demonstrated how Counter-Strike: Source could be played on a 3D dental scanner. The system, equipped with an old Intel processor and AMD GPU, proved surprisingly capable of running the popular first-person shooter at an impressive 600 to 700 frames per second (fps).

The post has gained a bit of attention on the r/pcmasterrace subreddit, highlighting the creative potential of reusing older hardware for gaming. The tech enthusiast repurposed the dental scanner’s hardware, which featured an older 5th-gen Intel Core i7-5720K and an MSI Raider X99 motherboard running at 3.3GHz with 32GB of DDR4-2999 RAM.

Read more