(CNN) - Some security experts exposed how Amazon’s Alexa and Google’s Assistant were vulnerable to hackers.
Security Research Labs said it found third-party app developers had access to customize user voice commands, which could allow eavesdropping or password phishing.
The company posted a demo on YouTube showing a user trying to use an app but was told it doesn’t run in their country.
But even though the device was silent, the app continued to run and listen in the background.
After awhile, the app announced an update and asked the user to say their password.
Amazon and Google Assistants do not ask users to reveal passwords when working correctly.
Both companies told CNN the security issue has been fixed.
Copyright 2019 CNN. All rights reserved.