The Yandex security service has not recorded any cases of remote hacking of smart speakers, the company told TASS.
Yandex explained that data between the speaker and the cloud is transmitted with multi-level encryption, the software is regularly updated, and access to device management is only possible through a verified user account. The security approach in Yandex ID is confirmed by the international certificate ISO/IEC 27001.
To detect suspicious activity, the company has implemented ML algorithms. In parallel, the Bug Bounty program is running — independent researchers look for vulnerabilities and receive rewards for found errors.
Yandex smart speakers are a line of Station devices based on the Alice voice assistant. The speakers control the smart home, play music and video, and are integrated with Yandex services. The devices are constantly in standby mode for a voice command, which makes the issue of protecting the microphone and transmitted data particularly sensitive for users.
The company's statement comes against the backdrop of growing public interest in the security of voice devices: in recent years, researchers around the world have regularly published reports on vulnerabilities in smart home ecosystems.
