ALERT: Malicious Amazon Alexa Skills Can Easily Bypass Vetting Process

In Hacker News by Blog Writer

Post Sharing
Researchers have uncovered gaps in Amazon’s skill vetting process for the Alexa voice assistant ecosystem that could allow a malicious actor to publish a deceptive skill under any arbitrary developer name and even make backend code changes after approval to trick users into giving up sensitive information.
The findings were presented on Wednesday at the Network and Distributed System Security