1. Home
  2. Smart Home
  3. News

New research finds that smart speakers can be compromised by lasers

By

A few weeks ago we reported about how Security Research Labs (SRLabs), a hacking research group and think tank based in Germany, found that Alexa and Google Home expose users to phishing and eavesdropping due to third-party skills and apps. Now, another new study about the vulnerabilities of smart speakers, like Amazon Echo, Apple Home Pod, and Google Home, has been released. Researchers at the University of Michigan and Japan’s University of Electro-Communications found that you can hack smart speakers with vibrating light.

Image used with permission by copyright holder

Researchers could stand hundreds of feet away from a smart speaker and manipulate the assistant’s artificial intelligence using a special laser encoded with commands. For example, a laser could be encoded with information that would command the assistant to unlock your front door or order something through your Amazon account. The encoding makes the laser vibrate in a way that the smart speaker confuses for a human voice. The components to build this type of hacking device are readily available to the public and to put the whole thing together can cost less than $400. This makes the hack easily available to criminals.

Recommended Videos

Even though there are features in place to stop this sort of hacking on most smart speakers, the researchers were able to get around most security features like voice recognition, wake words, and pins.

“…We have discovered that while commands like ‘unlock front door’ for August locks or ‘disable alarm system’ for Ring alarms require PIN authentication, other commands such as ‘open the garage door’ using an assistant-enabled garage door opener generally do not require any authentication. Thus, even if one command is unavailable, the attacker can often achieve a similar goal by using other commands,” the researchers noted in their paper, entitled Light Commands: Laser-Based Audio Injection Attacks on Voice-Controllable Systems.

Researchers tried their laser hacking on a variety of devices, including smart speakers in cars. They found Facebook’s Portal Mini, Amazon Echo devices, Google Home, Google Nest Cam IQ, the iPhone XR, and the sixth-generation iPad among the vulnerable devices.

There have been no reports of anyone using this for of hacking yet, but the study and others like to show how vulnerable our smart technology can be. Hopefully, the studies will put pressure on manufactures to find new ways to protect consumers from device hacking.

Editors' Recommendations

Topics
Alina Bradford
Former Digital Trends Contributor
Alina Bradford has been a tech, lifestyle and science writer for more than 20 years. Her work is read by millions each month…
Roborock S8 MaxV Ultra vs. Ecovacs Deebot X2 Combo: Which premium robot vacuum is best?

Roborock and Ecovacs are two of the biggest names in the world of robot vacuums. The companies have been producing some of the best robot vacuum and mop combos for years, and that trend has continued into 2024 with the Roborock S8 MaxV Ultra and Ecovacs Deebot X2 Combo. Both are ultra-premium devices that clock in at over $1,000, and we awarded both of them impressive scores in our reviews. In short, it's hard to go wrong with either robot vacuum.

However, there are some key differences between the Roborock S8 MaxV Ultra and the Ecovacs Deebot X2 Combo. From suction power and mopping skills to pricing and additional features, here's a comprehensive look at the two robot vacuums to help you decide which is best for your home.
Pricing and availability

Read more
Samsung Spring Sale: Get up to $915 off smart ranges today

Samsung's Spring Black Friday sale has slashed the prices of all kinds of home appliances, including gas and electric ranges. There are discounts available for Samsung's smart ranges too, which will allow you to enjoy savings of up to $915. Feel free to check out all the ranges that are cheaper than usual in the ongoing sale, but if you want to focus on getting a smart range for your kitchen, read on to learn all about them and how much you'll have to pay.

See All Deals

Read more
How to reset the Nanoleaf Skylight

The Nanoleaf Skylight is a unique piece of hardware. Unlike most Nanoleaf products that are quick to install or easy to move and replace, the Skylight is designed as a permanent fixture in your home. Instead of simply plugging it into an electrical outlet, you'll need to hardwire it onto your ceiling – and once it's in place, you'll want it to stay there for years.

However, like all electronics, it's possible for your Nanoleaf Skylight to start acting up. And since there's no easy way to get the entire unit down from your ceiling, you might be wondering how you can quickly solve the problem. Thankfully, Nanoleaf designed a simple way for you to reset the Nanoleaf Skylight without the need to disassemble the entire setup.

Read more