Home / Software & Gaming / Security / Security firm finds a way to enable remote control of Google Now and Siri

Security firm finds a way to enable remote control of Google Now and Siri

A French government-funded security firm has found a bug within Siri and Google Now that would enable a hacker to take control of the virtual assistants remotely. The hack uses radio waves to trigger what should have been a human instruction, it would take some old-fashioned spy work to implement though as it only works from 16 feet away.

Still, this could cause problems, as the hack could be used in a number of ways to mess with people's smartphones. However, the hacker would still need to be close by, with a headset and microphone in order to do any damage.

watch-dogs-hacker

French government run firm, ANSSI was behind the hack, according to Wired. However, it was Tripwire, another security firm that raised the flag and warned people about the hack, according to The Inquirer:

“This has been a very interesting year for software-defined radio hacks. We have seen hacks ranging from turning RAM chips into radios broadcasting air-gapped data to pita-sized radios stealing encryption keys to opening garage doors with a child's toy. This time we are hearing about a hack that remotely spoofs audio transmissions through a microphone wire, a trick which surely has other applications. My speculation would be that this technique may also have implications for other systems like phone-based credit processing or using the audio port for data transfer with IoT devices.”

Discuss on our Facebook page, HERE.

KitGuru Says: This hack seems to be quite similar to the sort of thing you would see in Watch Dogs, where you need to be in close range in order to pull it off. Hopefully Apple and Google can figure out a way to combat it. 

Become a Patron!

Check Also

Nvidia driver update fixes crucial security vulnerabilities

Nvidia GeForce, RTX, Quadro, NVS and Tesla GPU users will want to update their drivers soon. Nvidia has pushed out a hotfix with a number of critical security fixes that if left unfixed, could allow for unauthorised access to systems.