Recent Sonos Security Vulnerabilities Reinforce the Need for AV ‘Software Bill of Materials’

The NCC Group figured out how to turn Sonos devices into covert listening devices, performing hidden recordings by the microphones in the devices. Luckily, a patch has been issued, but what about other vulnerable devices that use the same software? This is where a Software Bill of Materials can help
Recent Sonos Security Vulnerabilities Reinforce the Need for AV ‘Software Bill of Materials’
Like

Share this post

Choose a social network to share with.

This is a representation of how your post may appear on social media. The actual post will vary between social networks

On Aug. 8, 2024 Robert Herrera (@robHerrera_) and Alex Plaskett (@alexjplaskett) presented a talk at Black Hat USA in Las Vegas describing a number of vulnerabilities in Sonos devices, including how to use the device for eavesdropping. Read more about how their findings might affect other AV devices, and how a Software Bill of Materials (SBOM) can help, here:

https://www.ravepubs.com/recent-sonos-security-vulnerabilities-reinforce-the-need-for-av-software-bill-of-materials/

Please sign in

If you are a registered user on AVIXA Xchange, please sign in