Skip to main content
  1. Home
  2. Phones
  3. Android
  4. Apple
  5. Mobile
  6. Web
  7. News

Hackers can control Google Now and Siri through your headphones

Add as a preferred source on Google

Many people love their voice assistants, whether it be Siri, Google Now, or Cortana. However, they may not be the most secure feature on your smartphone. As it turns out, it is possible to control both Siri and Google Now through silent radio signals from as far away as 16 feet. A pair of French information security researchers at ANSSI discovered the trick, Wired reports.

The scenario involves targeting a phone that has microphone-enabled headphones plugged into its headphone jack. The hackers use a laptop with the open-source GNU Radio software onboard, a USRP software-based radio, an amplifier, and an antenna to generate electromagnetic waves. The attacker can then exploit the headphone wire itself, simulating audio to make it seem as though it is coming from the microphone. From there, the attacker can control the phone remotely from as far as 16 feet away and ask the digital assistant to perform any action that it’s capable of doing. That includes making calls, navigating the Web, sending texts, and so on.

Recommended Videos

Hackers could even turn your phone into a listening device to spy on your communications, send the browser to a site with malware, or issue spam and phishing messages through your email and social media accounts. The simple brilliance of the hack shows once again how hackers can help expose problems with some of the most common and trusted technology.

Of course, the hack does have its limits. Hackers can only target phones that have microphone-equipped headphones or earbuds plugged in. It doesn’t work if users don’t have Google Now enabled from their lockscreens, or if they have Google Now programed to respond only to their voice. Now that Siri only responds to the voice of the phone’s owner in iOS 9 on the iPhone 6S, it won’t work on the new iPhones, either. Additionally, anyone who looks at their phone regularly would probably see unauthorized voice commands being carried out on their phone — it’s not exactly a discrete hack.

Regardless, the researchers have pointed out that it’s still a vulnerability that could be exploited easily, especially in public spaces where people congregate.

To protect users’ phones against hacks, the security community frequently recommends that users disable the voice-activated assistants from appearing on the default screen, though most people aren’t willing to sacrifice the convenience of the feature. Additionally, the researchers suggest that if Apple and Google allowed users to set their own activation word like the Moto X does, hackers wouldn’t be able to activate Siri or Google Now, unless they knew your specific name or phrase. Of course, that’s something the tech giants will have to consider — not the user. In regards to this particular headphone jack hack, the researchers suggest microphone cords with heavier shielding inside.

For some time, security advocates have been preaching about the hackable potential of our phone’s voice-activated digital assistants. Quite recently, an embarrassing hack of the iOS 9 lock screen involved tricking Siri into giving up contacts and other information. That flaw has since been fixed in a recent update, but the question of voice assistant hackability is still a serious one.

John Casaretto
Former Digital Trends Contributor
John is the founder of the security company BlackCert, a provider of SSL digital certificates and encryption products. A…
Galaxy Z Fold 8 Ultra: Everything we know about Samsung’s next flagship foldable
Though it will feature improvements across the board, the memory crisis might not spare Samsung’s Fold 8 Ultra.
Electronics, Speaker, White Board

The Samsung Galaxy Z Fold 8 Ultra is not the phone that reimagines what a foldable looks like. As that job falls to its sibling, the wider-screen Galaxy Z Fold 8, the Ultra could come as the direct successor to the Galaxy Z Fold 7, with the same tall, narrow design and the same book-style proportions, for the same audience. 

If you've used a Samsung Galaxy Z Fold in the past and think that the shape is perfect for you, the Fold 8 Ultra could be just the right phone for you. It has a redesigned inner display, a substantially larger battery, faster charging, and the new Flex Titanium technology designed to minimize the crease that has troubled Samsung's foldables for years. 

Read more
Your OnePlus phone is switching to ColorOS, whether you like it or not
OnePlus has confirmed that OxygenOS is being phased out, and eligible devices will get the option to update to ColorOS 17 once it becomes available.
Person holding OnePlus 15.

OnePlus has confirmed that OxygenOS, the Android skin that helped define the brand for more than a decade, is being retired in favor of ColorOS. The confirmation came buried in the community forum post announcing its exit from North America and Europe.

ColorOS replaces OxygenOS worldwide

Read more
Personal Intelligence in Search now connects to Google Calendar
Google Search AI can now read your Calendar and add events automatically
Google Calendar

Google is taking another step toward making Search feel less like a search engine and more like a personal assistant. The company has announced that AI Mode's Personal Intelligence can now connect directly to Google Calendar, allowing it not only to reference your schedule but also to create calendar events on your behalf.

Until now, Personal Intelligence mainly pulled information from apps like Gmail and Google Photos to provide more relevant responses. Calendar changes the equation because it becomes the first connected Google app that doesn't just provide context. It can actively act. The feature is rolling out now to users in the United States, with a wider international rollout planned later.

Read more