Skip to main content

Fix upcoming for Google Home, Chromecast bug that can tattle on your location

GoogleFindMyHomeDemo

Your trusty Google Home speaker may not be all that trustworthy after all — at least, not for now. Security researcher Craig Young from the firm Tripwire has discovered a bug that allows both the Google Home and the Google Chromecast TV stick to share user location, which needless to say is less than ideal. Apparently, the bug works by exploiting a loophole, and results in cross-checking the wireless networks in the vicinity with Google’s exacting geolocation services.

Recommended Videos

But don’t worry — this vulnerability won’t be present for long. On Monday, June 18, security expert Brian Krebs reported that Google will fix the location privacy leak “in the coming weeks.” And not a moment too soon — exploiting the bug is apparently quite straightforward, and requires attackers to simply run a script in the background in order to collect location data on anyone with a Google Home or Chromecast installed on their local network. The attacker wouldn’t even need to be connected to your network; they would only need to send you a malicious link, and for you to keep that link open for about a minute while they triangulated your position.

Please enable Javascript to view this content

“I’ve only tested this in three environments so far, but in each case the location corresponds to the right street address,” Young told Krebs. “The Wi-Fi based geolocation works by triangulating a position based on signal strengths to Wi-Fi access points with known locations based on reporting from people’s phones.” Although IP-based geolocation is only accurate to about three miles around the compromised device, the method that Young has discovered actually delivers location data to an accuracy of about 30 feet. Young has even produced a demo of the bug in action, which you can check out in the above video.

Krebs notes that Google only agreed to address the issue after he contacted them and informed the team that he would be publishing a piece about the problem. In fact, Young had previously made contact with Google, but the tech giant refused to issue a patch, noting that the geolocation feature was “intended behavior.” Clearly, Google has changed its tune, and now, the fix should go live in mid-July.

Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
How to use the Google Home app on a computer
Google Home icon on home screen.

Google Home makes it easy to manage all your smart devices through your smartphone or tablet. Giving you access to your camera feeds, smart thermostat, smart lights, and more, Google Home is one of the most popular smart home platforms on the market. But while there's a lot to love about Google Home, it lacks full PC support. However, that's slowly starting to change – here's a look at how to use the Google Home app on your PC and control your devices from a larger display.
Can you use the Google Home app on a PC?
Google Home doesn't have a PC app, but it does have a website. Unfortunately, Google notes that Google Home for web is in Public Preview, meaning not all features are available and you may encounter glitches during use. The website is seeing constant updates, so there's a good chance it'll work just as well as the mobile apps in the future. Be sure to check it out regularly to see what's been added.

There are a few other workarounds you can implement to get Google Home on your PC. Read on to learn about the alternatives.
Use Google Home through your Chromebook

Read more
The most common Google Nest Mini problems and how to fix them
A coral Google Nest Mini mounted on a brick wall.

The Google Nest Mini (2nd Gen) is one of the best smart speakers of 2024. Despite its low price, the Nest Mini gives you full access to Google Assistant, provides surprisingly great audio for a device its size, and is compact enough to fit nearly anywhere in your home. Whether you want to listen to music, dish out commands to other smart devices, or check the news, the Nest Mini can do it all.

However, the Nest Mini isn't without its faults. Setting up and using the smart speaker is typically a straightforward, hassle-free experience. But like all electronics, some owners have noticed strange issues when performing simple tasks — such as connectivity problems or an unresponsive unit.

Read more
What is IFTTT and how can you use it in your smart home?
A bunch of colorful shapes on a black background.

If you've spent any time shopping for smart home gadgets, you've probably noticed that many are built with support for Amazon Alexa, Apple HomeKit, and Google Home. These are smart home platforms, and they let you access all your devices through a single app or interface. You've probably also noticed support for something known as IFTTT. But what exactly is IFTTT? And is it something you should be concerned with? Here's a closer look at the unique (and incredibly useful) software.
What is IFTTT?

IFTTT stands for, "if this, then that." It's terminology often used in programming, allowing software to chain together functions and perform certain tasks if other tasks are detected. For example, if the user inputs the incorrect password, then they'll be notified to try logging in again.

Read more