You are here Home » Tech » Serious security vulnerability in Chrome speech recognition discovered

Serious security vulnerability in Chrome speech recognition discovered

by Fahad Saleem

chrome seuicrtyA massive vulnerability has been pointed out by the penetration testing experts regarding the speech recognition tool of Google Chrome, so you may want to get rid of it or be on the alert always. Someone might be eavesdropping on you during your long internet surfing sessions. It all started when the Mountain View’s tech giant meshed the much awaited speech recognition tool in Google Chrome, which helps you surf the voice smart websites. This feature was highly welcomed by internet users across the globe in a very rip-roaring fashion and hailed as another edge of Google Chrome on other competing browsers. Six months after, the fingers started to raise as the programmatically infected vulnerabilities raised many eyebrows around the world. Tal Atar, an SME in this field has touted that the speech-recognition Application Programming Interface (API) of the speech recognition feature of the Google Chrome is more of an open source type glitch that can be easily exploited by any expert intruder to gain access to your computer’s microphone.

“Google’s engineers, who’ve proven themselves to be just as talented I imagined , were able to identify the problem and fix it in less than 2 weeks from my initial report but according to the latest test, Google has not sorted out the problem,” claimed Atar, who has dedicated a complete website on this possible glitch. On the other hand, Google insists that there is ‘no immediate threat’ and rejected the claims of Atar.

“We’ve re-investigated and still believe there is no immediate threat, since a user must first enable speech recognition for each site that requests it. The feature is in compliance with the current W3C standard, and we continue to work on improvements” claimed Google.

Most of the voice recognition websites work over the secure ‘https’ network, that means Google Chrome will not ask you every time some website asks for access to the microphone of your computer. That means? The intruder at the other end of the pipe can easily sneak into the network and eavesdrop. Solution? There is nothing wired up till now but experts recommend not to use speech recognition, at least from the uncommon websites until there is an official solution to the problem by Google.

You may also like