Some users actually feel uncomfortable with the smart speakers, such as Amazon Echo with Alexa, as those devices typically come with the always-listening feature. The tech firms actually do this so that the speaker can immediately react to the users’ commands at once. However, there are some people, who are concerned about this feature, as they think the companies are listening to them all the time and that breaches their privacy.
Although all the smart speaker manufacturers say that they are not invading users’ privacy, Amazon recently faltered in this field. According to the security firm Checkmarx’s researchers, it appears that there is, indeed, a security flaw in Amazon’s smart digital assistant Alexa. The newly discovered flaw let the Echo devices listen to the users all the time and not only that, it also allows others to eavesdrop on the users.
However, the good news is that the research firm Checkmarx has already informed Amazon before announcing the flaw publicly. Also, Amazon has fixed the problem of Alexa.
Now, it is not clear as to whether or not the cybercriminals have already exploited the flaw before it was patched. However, so far there has not been any report of that. “Customer trust is important to us and we take security and privacy seriously. We have put mitigations in place for detecting this type of skill behavior and reject or suppress those skills when we do,” Amazon said in a statement.