Friday, November 20, 14:32
Home security The LidarPhone attack turns smart brooms into microphones

The LidarPhone attack turns smart brooms into microphones

A team of academics released a new study this week that turned a smart vacuum cleaner into a microphone capable of recording short conversations. Named LidarPhone, the technique works by taking over the built-in LiDAR-based laser navigation component and turning it into a laser microphone.


"Laser microphones" are well-known surveillance tools used during the Cold War to record conversations from far. Agents dropped the laser on distant windows to watch the glass vibrate and decode vibrations to decrypt the conversations that took place in the rooms.

Academics from the University of Maryland and the National University of Singapore took this simple idea and applied it to a robot broom Xiaomi Roborock.

Certain conditions must be met

A LidarPhone attack is not simple and certain conditions must be met. Initially, the attacker would have to use malware or an infected update process to modify the firmware of the broom to take control of the LiDAR component.

This is necessary because the broom LiDARs work by making rotations at any time, one procedure which reduces the number of "data points" that an attacker can collect.

Through the infected firmware, intruders should stop the broom LiDAR from rotating and instead focus on one nearby object at a time, from which it could record how its surface vibrates in sound waves.

In addition, because the LiDAR components of the vacuum cleaner are not as accurate as laser microphones, the researchers also said that the collected "laser readings" should be downloaded to the remote server of the intruder for further processing in order to amplify the signal and receive the sound in a state where it can be understood by a human.

Nevertheless, despite all these conditions, the researchers stated that they were able to record and receive audio data from the LiDAR navigation test component of the Xiaomi robot vacuum cleaner.

They tried LidarPhone attack with various objects, changing the distance between the robot and the object and the distance between the sound source and the object.

Academics also said the technique could also be used to identify speakers based on gender or even to determine their political orientation by music played during newscasts, recorded by the broom LiDAR.

But while the LidarPhone attack sounds like a serious invasion of privacy, users for now do not need to be afraid. This type of attack requires many conditions to take place. There are much easier ways to spy on users than replacing the firmware of a broom, such as tricking the user into installing malware on their phone.

The LidarPhone attack is just a new academic research that can be used to strengthen security and the design of future robotic smart brooms.



Please enter your comment!
Please enter your name here

Teo Ehc
Teo Ehc
Be the limited edition.


The LidarPhone attack turns smart brooms into microphones

A group of academics released a new study this week in which they turned a smart vacuum cleaner into a microphone capable of ...

Fake QR codes expose your cell phone to hackers

Nowadays, QR codes are everywhere, as they are easy to use and fast. The word itself means "quick response". The scan ...

Hackers from China, Russia, Iran and North Korea are targeting Canada!

A report published by the Cyber ​​Security Center of Canada, entitled "National Cyber ​​Threat Assessment 2020", warns of risks associated with ...

Apple will pay $ 113 million for deliberate slowdown of iPhones

Apple has agreed to pay millions of dollars in 34 states due to its previous controversial practice of deliberately slowing down older iPhones ...

Chinese hackers target Japanese organizations

Chinese hackers are behind a large-scale hacking campaign targeting Japanese organizations. It is said that these are the ...

Mount Locker ransomware targets “TurboTax” tax software!

The Mount Locker ransomware gang is preparing for the tax period, aiming for TurboTax returns for encryption. Mount Locker ...

Jupiter, Saturn and Moon will form a triangle tonight

It is really sad that the sky has to offer us so many wonderful spectacles while we are locked in our house because of the pandemic ...

Facebook: Sues Turkish developer for Instagram clone sites

Facebook has sued a Turkish developer for operating a network with at least 20 Instagram clone sites.

Is the Muslim Pro app selling its data to the US military?

Singapore is investigating allegations that the mobile app, Muslim Pro, has sold its data to the US military ....

An error in Messenger allowed users to hear their calls

A dangerous error related to Messenger calls was discovered by Google's Project Zero team, which immediately reported the vulnerability ...