A voice-activated TV remote can be turned into a covert home surveillance device, according to researchers from infosec firm Guardicore who probed the device to show that a man-in-the-middle attack could compromise it.
Guardicore discovered an attack vector on US telco giant Comcast's Xfinity XR11 voice remote – of which around 18 million units have been sold – that allowed malicious people to turn it into an eavesdropping device.
Dubbing the attack method WarezTheRemote, researchers explained that the clicker's use of RF spectrum to communicate with its set-top box – instead of the traditional infrared systems used for telly remotes – gave them a way to use its microphone to snoop on private conversations in the home.
The firm said in a blog post: "The attack did not require physical contact with the targeted remote or any interaction from the ..
Support the originator by clicking the read the rest link below.
