Security News > 2020 > August > Amazon Alexa flaws could have revealed home address and other personal data
2020-08-13 13:06
The flaws could also have helped attackers obtain usernames, phone numbers, voice history, and installed skills, says Check Point Research.
Silently installed skills and apps on a user's Alexa account.
Got a list of all installed skills on the user's Alexa account.
Amazon doesn't record bank account credentials, but the victim's interaction with the bank skill could have been used to obtain the banking data history, according to Check Point.
Further, the flaws that Check Point discovered could have allowed an attacker to upload a skill to Alexa, Ahmed asserted.