Disclaimer: We may earn a commission if you make any purchase by clicking our links. Please see our detailed guide here.

Follow us on:

Google News

Serious Security Flaws Are Found in Google Assistant and Samsung Bixby

Bhaswati Sarkar
Bhaswati Sarkar
She likes to lose herself in music and daydreams quite often. Travelling excites her and photography is her passion- nature is her favorite subject. Writing is cathartic for her. A happy-go-lucky kind of person, she tries to remain calm and serene through daily life.

Join the Opinion Leaders Network

Join the Techgenyz Opinion Leaders Network today and become part of a vibrant community of change-makers. Together, we can create a brighter future by shaping opinions, driving conversations, and transforming ideas into reality.

The Israel-based security software company, Checkmarx recently discovered that flaws in several Android devices’ personal voice assistant technology could have rendered them vulnerable to hackers and other security threats.

Researchers at Checkmarx demonstrated this security threat by developing a mock-up weather app that would ask for access to the device’s voice assistant.

“The malicious app we designed for the demonstration was nothing more than a mockup weather app that could have been malicious by design. When the client starts the app, it essentially creates a persistent connection back to the [command and control] server and waits for commands and instructions from the attacker, who is operating the C&C server from anywhere in the world. Even closing the app does not terminate the persistent connection.” – They explained

Consequently, such technological holes could expose the user and the phone security to the invasion of privacy, such as keeping the user in the dark while taking their photos and videos and even tracking their location.

These flaws have mostly been found to exist in Google Assistant in Google Pixel smartphones and in Samsung’s Bixby and its Galaxy series, as per the research published by Checkmarx on Tuesday.

The company stated that these technological loopholes could have enabled hackers to misuse the tech and record two-way conversations, silence the shutter on a phone’s camera and collect GPS location based on a device’s Metadata, especially because voice assistants don’t need to ask for permission to capture media.

Fortunately, the security patch made available on the Play Store by Google and Samsung has been available since this July, and it has protected these Android devices from such infiltration and misuse of information.

That security threat increased with the development of technology and had been proved previously when researchers found that they could intercept Wi-Fi usernames and passwords from customers who installed Amazon’s Ring doorbells on their homes. By and by, this creates new means for cybercriminals to abuse user data.


Partner With Us

Digital advertising offers a way for your business to reach out and make much-needed connections with your audience in a meaningful way. Advertising on Techgenyz will help you build brand awareness, increase website traffic, generate qualified leads, and grow your business.

Power Your Business

Solutions you need to super charge your business and drive growth

More from this topic