Voice assistants could be fooled by commands you can't even hear

  • by Jake Bell
  • in Research
  • — May 11, 2018
Share:

The controls, undetectable to the human ear, could prove troublesome if placed in the wrong hands, according to The New York Times.

The New York Times reports that researchers in China and the US have discovered a way to surreptitiously activate and command those virtual assistants by broadcasting instructions that are inaudible to the human ear.

This attack required the perpetrator to be within whispering distance of the device, but further studies have since shown that attacks like this could be amplified and carried out as far away as 25ft.

More news: Kim Kardashian Reveals Tristan Thompson Blocked Her On Instagram After Recent Comments

That warning was borne out in April, when researchers at the University of IL at Urbana-Champaign demonstrated ultrasound attacks from 25 feet away.

Researchers from the University of California, Berkeley, want you to know that they might be also be vulnerable to attacks that you'll never hear coming.

They were even able to hide the command, "O.K. Google, browse to evil.com" in a recording of the spoken phrase, "Without the data set, the article is useless".

More news: Nintendo Switch to get Minecraft Bedrock update June 21

This year, another group of Chinese and US researchers from Chinas Academy of Sciences, and other institutions, demonstrated they could control voice-activated devices with commands embedded in songs that can be broadcast over the radio or played on services like YouTube.

"We wanted to see if we could make it even more stealthy", said UC Berkeley fifth-year computer security Ph.D. student Nicholas Carlini, one of the authors of the research that has been published online.

So what are the makers of these voice platforms doing to protect people? But someone else might be secretly talking to them, too. None would say, for instance, whether or not their voice platform was capable of distinguishing between different audio frequencies and then blocking ultrasonic commands above 20kHz.

More news: Leave.EU fined £70k for breaching law during 2016 referendum

The idea that voice assistants can be exploited or fooled is by no means new, and many stories have surfaced revealing potential and hypothetical exploit situations involving your typical at-home assistant device. Despite a heavy focus on artificial intelligence and voice at its yearly I/O developer conference this week, Google's keynote presentation hardly mentioned security at all. "For example, users can enable Voice Match, which is created to prevent the Assistant from responding to requests relating to actions such as shopping, accessing personal information, and similarly sensitive actions unless the device recognizes the user's voice". And what about users who don't have Voice Match enabled in the first place? In demonstrating what's possible with this method, Carlini's goal is to encourage companies to secure their products and services so users are protected from inaudible attacks.

Share:

IN CASE YOU MISSED IT

RELATED NEWS

French family were miraculously saved from a pack of cheetahs
The cat spent about 10 minutes investigating the auto before exiting, the BBC reported at the time. In 2009, a nine-year-old boy was bitten on the arm by a cheetah after leaving his family's auto .
5/11/2018

Ousted Catalan president Carles Puigdemont rejects his re-appointment as leader
Former Catalan leader Carles Puigdemont announced his decision to renounce leadership of Catalonia on Wednesday. Torra is a lawyer and journalist who has been active in pro-independence lobbies in the wealthy region.
5/11/2018

Job growth in region while unemployment declines in April
The jobless picture for the region that includes Lethbridge improved for a second straight month in April. The goods-producing sector shed 15,900 positions, mostly in construction.
5/11/2018

Red-Faced AT&T Boss Admits Michael Cohen Payment Was 'Big Mistake'
He was also tasked with spending half of his time on legislative policy and half on regulatory policy. Cohen appears to have been selling himself based on access he said he could provide to Trump.
5/11/2018

World Health Organization ready to deploy Ebola vaccines to DRC
Congo's long experience of Ebola and its remote geography mean outbreaks are often localised and relatively easy to isolate. One million United States dollars from the World Health Organization contingency fund for emergencies have been mobilized.
5/11/2018

Volume Buzzers : Sears Holdings Corporation (NASDAQ:SHLD), CSP Inc. (NASDAQ:CSPI)
However looking at valuation ratios the stock has 5 year expected PEG ratio of 0 whereas its trailing twelve month P/E ratio is 0. This is a problem for day traders and it could mean the difference between a profitable and non-profitable trade.
5/11/2018

With Iran Deal Nixed, What's Plan B?
Trump said he definitive proof that Iran has violated the 2015 agreement aimed at freezing the country's nuclear ambitions. It required years of negotiation between Iran, the U.S. , the UK, France, Germany, China and Russian Federation .
5/11/2018

Suspect in custody after reports of shots fired at California high school
A message posted to Highland High School principal's Twitter account urged everyone to stay clear of campus. Ricky Munoz, 23, says he dropped his two younger brothers and a friend off at the school around that time.
5/11/2018

London's Khan Moves to Ban 'Junk Food' Adverts
Adverts for junk food could soon be banned on the London Underground as part of plans to tackle childhood obesity in the capital. Another aim of the strategy is to ban new hot food takeaways opening within 400 metres of schools.
5/11/2018

Miami gives early go-ahead for race to be held in city
Red Bull took victory in the third race in China before the Silver Arrows team were nearly gifted the win in Azerbaijan. At the tracks so far the Ferraris.it seems to have worked quite well for them and their auto has been quite strong.
5/11/2018

Sony Reveals They're Breaking from Tradition for Their E3 2018 Showcase
Join us on Monday, June 11 starting at 6:00 pm Pacific Time as we share a preview of what's next for PlayStation . And if you don't want to listen to all the chit-chat, Gematsu has transcribed Layden's comments .
5/11/2018

BC saw second-highest number of monthly overdose deaths in March
For north Vancouver Island, there have been a total of eight suspected overdose deaths for a rate of 25.7 per 100,000. The coroner's service replicated its deadline for those taking illegal drugs to not use independently.
5/11/2018

Rita Ora Drops 'Girls' feat. Charli XCX, Cardi B and Bebe Rexha
In the track Rita sings: "Sometimes I just wanna kiss girls , girls , girls / Red wine, I just wanna kiss girls , girls girls ". Charli said that when it came to teaming up with Rita she didn't gave it a second thought and was instantly up for it.
5/11/2018

Microsoft Store Game Gifting Expands to All Digital Titles, PC Games
We are hard at work on improving digital gifting, adding new capabilities as well as support for new content types. For a complete rundown of the terms, conditions, regulations and all that, head over to the Xbox Wire .
5/11/2018

Rihanna's Hollywood Hills home burglarized; suspect tasered by police
Leon is now being held on $150 000 (R1,8 million) bail on further charges of residential burglary and trespassing. We all love Rihanna , but one fan took it way too far, reportedly breaking into her home and spending the night.
5/11/2018