1. Home Theater

Your Sonos or Bose speaker (probably) isn’t haunted, but it could be hacked

By

Sonos Streaming Music Stereo
The idea of your internet-connected speakers and other smart devices talking to each other might sound crazy, but it’s more likely than you think. At least it is now that hackers have found a way to play any sound they want on certain speakers from Sonos and Bose, as Wired reports.

Cybersecurity company Trend Micro has found that models from Sonos, including the Sonos One and Sonos Play:1, as well as some Bose SoundTouch speakers, can be found relatively easily by remote attackers. Trend Micro found that between 2,000 and 5,000 Sonos devices could be found online, depending on the time of day, while 400 to 500 Bose systems could be found. Once the speaker is found, an attacker can play any audio of their choice through the speaker without much work.

While playing audio doesn’t sound like much of a threat — especially when compared to your smart home devices being made part of a botnet — it isn’t as innocuous as it sounds. Attackers could, for example, use a compromised speaker to play Alexa or Google Home commands. With our homes increasingly hosting these types of devices, and in the case of the Sonos One, having Alexa built in, this could give an attacker free reign over your smart devices.

Despite the potential consequences that this vulnerability could lead to, for the time being, there don’t seem to be reports of much beyond simple pranks. Earlier this year, a post by a Sonos owner on the company’s community forum complained of a series of spooky sounds emanating from their speaker — first the sound of a door opening, then glass breaking, then a baby crying. Eventually the customer pulled the plug to stop the sound.

Fortunately, this shouldn’t pose a problem for the average Sonos or Bose owner. Most home networks are secure enough to prevent the access needed for this type of attack. If, on the other hand, you’re running a game server or allowing other types of access to your home network from the internet, you might want to tighten up your security settings.

Sonos has issued a patch aimed at fixing this issue, and while Bose has yet to comment on the issue, it’s likely that a similar fix is on the way.

Editors' Recommendations

The best Apple HomeKit-compatible devices for 2021

best buy fathers day sale 2020 homepod

These are the best cheap Sonos deals and sales for January 2021

sonos move review 8

These are the best cheap Amazon Echo deals for January 2021

Denon’s Dolby Atmos Home Sound Bar 550 takes versatility to a new level

Denon Home Sound Bar 550

Sony CES 2021 TV lineup: Sony is back In a big way

Sony CES 2021 TV 1

This 75-inch LG 4K TV just got a $200 price cut at Best Buy

lg 75 inch 4k tv deal best buy january 2021 lg75inch4ktv2

Everything TCL has announced so far at CES 2021

TCL 2021 6-Series 8K TV

The best new soundbars of CES 2021

Cowin Soundbar

The best TVs of CES 2021: Samsung, Sony, LG, TCL

Sony CES 2021 TV 1

Sony CES highlights: Everything announced for 2021

Sony X95J Series TV

5 TV trends coming out of CES 2021

TCL Mini LED

The best documentaries on Amazon Prime right now

All In: The Fight for Democracy

Get the perfect Super Bowl projector and projector screen for $138 at Walmart

fangor projector deal walmart january 2021 featured