"Vulnerability Allowed Eavesdropping via Sonos Smart Speakers"

NCC Group researchers discovered vulnerabilities in Sonos smart speakers, including a flaw that could have enabled attackers to eavesdrop on users. An attacker in Wi-Fi range of the targeted Sonos smart speaker can exploit one of the vulnerabilities for Remote Code Execution (RCE). The researchers showed how an attacker could have taken control of a speaker, secretly recorded audio, and exfiltrated it to their server using this vulnerability. This article continues to discuss the Sonos product vulnerabilities. 

SecurityWeek reports "Vulnerability Allowed Eavesdropping via Sonos Smart Speakers"

Submitted by grigby1