Siri’s Voice Could Carry Sensitive Info to an Attacker

Posted: January 29, 2015 / Author: Dror Liwer

Researchers from Italy and Poland managed to devise an attack that uses Siri's audio stream to Apple’s server to deliver to an attacker private info stolen from the victim’s iPhone.

Exfiltrating the information is done by embedding it in the voice traffic, which is then intercepted by the threat actor through a man-in-the-middle technique. Basically, it is steganography, the method for concealing data in a container that preserves its properties intact. Read More