Gaining root access on Alexa using only sound [pdf]

Please change the title to the actual paper: &quot;Light Commands: Laser-Based Audio Injection Attacks on Voice-Controllable Systems&quot;<p>The paper is about sending voice commands using lasers, not sound. There&#x27;s also no mention of &quot;root access&quot;, the paper is just about replaying audio-converted-to-light rather than having any kind of interactive &quot;root&quot; shell prompt. The only feedback to know whether the exploit succeeded would be sending commands (e.g. unlock a door), which the victim might notice.

Smarter Every Day has a video demonstrating this technique[1] with the help of one of the researchers involved in this project. I was a little spooked at first, but then I realized that there is no way to point a laser at any of my devices.<p>[1]: <a href="https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=ozIKwGt38LQ" rel="nofollow">https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=ozIKwGt38LQ</a>

&quot;we show how to use light to obtain control over these devices at distances up to 110 meters&quot;<p>&quot;Command Selection: ...Purchase a Laser Pointer&quot;<p>Hilarious example<p>Making other people buy stuff with laser beams... wait until marketing finds out!