Hacked smart devices double as surveillance tools, new research finds

By Dyllan Furness Published August 24, 2017

CovertBand: Activity Information Leakage Using Music

Hackers can turn smartphones, tablets, and smart TVs into surveillance tools by exploiting their built-in microphones, according to a new study out of the University of Washington. With the device hijacked, the attacker can detect body position and movement of people within its vicinity, raising additional concern about the security of smart devices, which made the news earlier this year with

Recommended Videos

revelations about the ease with which they can be comprised.

“We were curious about the privacy threats that these devices can expose users to,” Shyam Gollakota, senior author of the study and UW associate professor of computer science and engineering, told Digital Trends. “So we asked the question, ‘How about a simple task of playing music on these devices? Can we use music to achieve surveillance on people?’”

Gollakota and his team used software called CovertBand, which allows a smart device to double as a remote-controlled sonar system, by taking advantage of a device’s built-in speaker and microphone. The researchers manipulated the devices to play modified music and the software could then analyze reflected sounds to track body movements and position.

“The way this works is that we embed a chirp signal in the music and hide it using the beats of the music,” Gollakota explained. “These signals get reflected off the human body and can be observed by the microphones in these devices. We can analyze these reflections and can figure a whole host of things about the person.”

The UW team hid the subtle chirp in songs by artists like 2Pac and Michael Jackson, which you can hear here. The chirps are slight but not always indistinguishable. In the study, listeners could identify the edited songs 58 percent of the time.

Using CovertBand the researchers were able to detect multiple individuals within the same room as the device and even behind barriers, such as thin walls. Without barriers they could detect a walking individual about twenty feet away with an error of around seven inches. Through a thin wall that distance decreased by about half.

Though the idea is unsettling, this isn’t the most secretive surveillance technique — an attacker has to literally play music for it to work. If someone tried this on your home smart TV, you’d surely notice. It nonetheless demonstrates the potential for such devices to be exploited in private or public spaces.

“Be careful about what kind of audio can be played on your device,”Gollakota advised. “Strictly control what kind of apps can use both your speaker and microphones and ensure that only the most trusted apps can do so.”

The researchers will present their report next month at the Ubicomp 2017 conference.

Topics

Former Digital Trends Contributor

Dyllan Furness is a freelance writer from Florida. He covers strange science and emerging tech for Digital Trends, focusing…

Cars

Waymo, Nexar present AI-based study to protect ‘vulnerable’ road users

waymo data vulnerable road users ml still 1 ea18c3

Robotaxi operator Waymo says its partnership with Nexar, a machine-learning tech firm dedicated to improving road safety, has yielded the largest dataset of its kind in the U.S., which will help inform the driving of its own automated vehicles.

As part of its latest research with Nexar, Waymo has reconstructed hundreds of crashes involving what it calls ‘vulnerable road users’ (VRUs), such as pedestrians walking through crosswalks, biyclists in city streets, or high-speed motorcycle riders on highways.

Cars

Rivian, VW venture kicks off next-gen platform for R1, Scout EVs

Rivian R2, R3, and R3X

The big challenge for Rivian, the EV maker known for its innovative electric and software systems, has long been how to reach the next stage of growth.

That stage came within reach in June, when the California-based company and Volkswagen announced a joint venture involving a $5 billion injection from the German automaker.

Cars

Hyundai teases Ioniq 9 electric SUV’s interior ahead of expected launch

hyundai ioniq 9 teaser launch 63892 image1hyundaimotorpresentsfirstlookationiq9embarkingonaneweraofspaciousevdesign

The Ioniq 9, the much anticipated three-row, electric SUV from Hyundai, will be officially unveiled at the Los Angeles Auto Show next week.

Selected by Newsweek as one of America’s most anticipated new vehicles of 2025, the Ioniq 9 recently had its name changed from the Ioniq 7, which would have numerically followed the popular Ioniq 6, to signal the SUV as Hyundai’s new flagship EV model.