Are Voice-Enabled Devices Prioritizing Convenience Over Security?

Are Voice-Enabled Devices Prioritizing Convenience Over Security?

Are voice-enabled devices making you more vulnerable to cyberattack?

Your voice is unique, so it should be secure, right? Not if hackers have something to say about it.

Voice has become an integral part of our modern lives with nearly half of Americans using digital assistants. But as voice assistants bring convenience, are they also bringing security issues along with them? Without the proper protections in place, if you can access your phone, home or car with your voice, hackers could do the same.

I was interested in how the rise of voice-assistant-equipped cars, locks and phones makes for a hackers playground, so I asked Monique Becenti, product and channel specialist at SiteLock, about the risks of voice technology as well as best practices for using voice-enabled security features.

What are the potential security consequences of the rise in voice-enabled technology for unlocking homes and cars?

The safety of an individual could be at risk when using voice-enabled technology, like Amazon Alexa, to secure their homes or start their car. For example, an attacker could exploit a vulnerability in a voice-enabled front door lock and go as far as to steal a homeowner’s valuable belongings.

How can hackers get access to the consumer voices used to unlock these devices? How can bad actors exploit consumer voices?

Cybercriminals can exploit vulnerabilities found within the firmware installed on voice-enabled technology to gain access without ever using an individual’s voice. This can be done through undetected commands embedded within white noise to exploit a voice-enabled device, such as unlocking the user's car. Even more alarming, attackers may target specific victims by secretly recording a sample of their voice and playing it back to unlock the system. As a best practice, users should be aware of their surroundings when using any voice-enabled technology to ensure their safety. Additionally, users should change the default settings and password, implement two-factor authentication, and enable SSL encryption to ensure their security on the physical device.

What security issues come along with other types of smart home devices?

Smart home devices are vulnerable to security issues and could be used in larger distributed denial of service (DDoS) attacks if they’re not properly secured. For example, while under a DDoS attack, a victim’s door locks and security cameras could be rendered completely inoperable. These safety concerns could be mitigated with stronger security policies, starting at the manufacturer. This would also force developers to focus on security protocols—such as, secure firmware and the capability to perform security updates—during the design stage.

What are some best practices for protecting connected devices from hackers and how can consumers balance the convenience of voice and connected technology with the risks?

Consumers should always proceed with caution when using voice-enabled devices. Balancing convenience with security risks is possible if consumers are diligent in researching their devices before purchasing. For starters, consumers should ensure the device’s firmware has the capability to be updated in the event a security vulnerability. Another easy way is by reviewing the manufacturer's security policy and website for any bad reviews or negative press regarding the product’s security. Finally, consumers should know and understand how to take action if their security is compromised. For example, a manufacturer could be held liable if a user’s safety is proven to be compromised due to an attacker exploiting a vulnerability or if the voice command feature was faulty.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • Maximizing Your Security Budget This Year

    7 Ways You Can Secure a High-Traffic Commercial Security Gate  

    Your commercial security gate is one of your most powerful tools to keep thieves off your property. Without a security gate, your commercial perimeter security plan is all for nothing. Read Now

  • Making Safety and Security Intrinsic to School Design

    Public anxieties about school safety are escalating across the country. According to a 2023 Gallup report, 44% of parents fear for their child’s physical safety at school, a 10 percentage-point increase since 2019. Unfortunately, these fears are likely to increase if the incidence of school tragedies continues to mount. As a result, school leaders are now charged with two non-negotiable responsibilities. The first, as always, is to ensure kids have what they need to learn, grow, and thrive. Sadly, their second responsibility is to keep the children in their care safe from threats and physical danger. Read Now

  • The Power of a Layered Approach to Safety

    In a perfect world, every school would have an unlimited budget to help secure their schools. In reality, schools must prioritize what budget they have while navigating the complexities surrounding school security and lockdown. Read Now

  • How a Security System Can Enhance Arena Safety and the Fan Experience

    Ensuring guests have both a memorable experience and a safe one is no small feat for your physical security team. Stadiums, ballparks, arenas, and other large event venues are increasingly leveraging new technologies to transform the fan experience and maintain a high level of security. The goal is to preserve the integrity and excitement of the event while enhancing security and remaining “behind the scenes.” Read Now

Featured Cybersecurity

Webinars

New Products

  • QCS7230 System-on-Chip (SoC)

    QCS7230 System-on-Chip (SoC)

    The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge. 3

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3

  • Mobile Safe Shield

    Mobile Safe Shield

    SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame. 3