Samsung TV Security Hole Opens Door for Hackers

News
By published

A recent study has demonstrated that voice data transmitted via Samsung smart TVs lacks encryption and may be open to savvy hackers.

In the latest round of the security story that never ends, the voice recording on Samsung smart TVs is even less secure than previously believed. The electronics company recently clarified that its TVs' voice recognition software shares voice data with third parties, but a recent study has demonstrated that the voice data lacks encryption and may be open to savvy hackers.

The information comes from Buckingham, United Kingdom-based business security company Pen Test Partners. Researcher David Lodge took a deep dive into a Samsung smart TV to see just how it shares data and found that the results are generally not encouraging.

MORE: Best Video Streaming Services

First, the good news: Samsung smart TVs are not listening to you unless you specifically ask them to, and even then, they usually don't share data with Nuance, their third-party voice recognition service. When you activate voice recognition (usually by saying "Hi, TV"), the TV begins listening. It does not record simple commands, like changing the volume or the channel.

Lodge experimented by asking the TV to run a Web search for the word "Samsung," and discovered that complex voice commands do, indeed, go to Nuance servers. The bad news is that they don't go there securely. Lodge followed the command back to the server and learned that stream does not use a secure HTTPS protocol; in fact, it does not use HTTP at all.

Samsung transmits voice data to Nuance through an unsecure cocktail of XML and binary data, and does not use SSL encryption. If a talented researcher like Lodge could track voice data back to Nuance, a malicious hacker could do the same, provided that he or she had access to your smart TV and home network credentials.

Whether this is really dangerous is up for debate, as most users are not likely to look for anything terribly compromising via voice search on their smart TVs. Still, in a day and age when it's common for both cybercriminals and world governments to try to leverage personal data, it's surprising to see a big company transmit private information without some kind of encryption.

Marshall Honorof is a Staff Writer for Tom's Guide. Contact him at mhonorof@tomsguide.com. Follow him @marshallhonorof. Follow us @tomsguide, on Facebook and on Google+.

See more Computing News
TOPICS
Marshall Honorof
Marshall Honorof

Marshall Honorof is a senior editor for Tom's Guide, overseeing the site's coverage of gaming hardware and software. He comes from a science writing background, having studied paleomammalogy, biological anthropology, and the history of science and technology. After hours, you can find him practicing taekwondo or doing deep dives on classic sci-fi. 

Latest in Online Security
A magnifying glass on top of the Steam logo in a web browser
Valve just pulled a malicious game demo spreading info-stealing malware from Steam
A man filing his taxes electronically on a laptop
AI-powered tax scams are here - how to stay safe from deepfakes, phishing and more this tax season
MacBook Pro 2023
New Mac attack is tricking users into thinking their computer is locked — how to stay safe
Hacker using a stolen social security card
Your Social Security number is a literal gold mine for scammers and identity thieves — here’s how to keep it safe
An open lock depicting a data breach
Half a million teachers hit in major data breach with SSNs, financial data and more exposed — what to do now
Green skull on smartphone screen.
Malicious Android apps with 60 million installs bombarding phones with ads and phishing attacks — how to stay safe
Latest in News
Apple Watch Series 10
Future Apple Watch models could get a surprising new feature — what we know
iPhone 16 Pro vs iPhone 16 Pro Max in hand showing displays
Forget iPhone 17 — iPhone 18 could get this huge upgrade
The new Husqvarna iQ series robot lawn mower.
Husqvarna’s new robot mowers offer GPS for less
Rendered images of rumored foldable iPhone.
Foldable iPhone report just revealed key details — here's what we know
NYTimes Connections
NYT Connections today hints and answers — Sunday, March 23 (#651)
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #385 (Sunday, March 23 2025)
More about online security
A man filing his taxes electronically on a laptop

AI-powered tax scams are here - how to stay safe from deepfakes, phishing and more this tax season
Hacker using a stolen social security card

Your Social Security number is a literal gold mine for scammers and identity thieves — here’s how to keep it safe
Apple Watch Series 10

Future Apple Watch models could get a surprising new feature — what we know
See more latest
4 Comments Comment from the forums
  • ohim
    Why can`t a TV be just a TV ?!?! ...
    Reply
  • icemunk
    "Provided they have access to your smart TV and network credentials" - It's coming from inside the house!
    Reply
  • f-14
    they're not " hackers" it's just the pot smoking serial rapist slippery willy clinton mandated back door for the NSA and U.K. MI units to find him new victims
    Reply
  • yorich
    "If a talented researcher like Lodge"

    so all it takes to be a "talented researcher" is the ability to use wireshark? standards these days...
    Reply
Most Popular
Apple Watch Series 10
Future Apple Watch models could get a surprising new feature — what we know
The new Husqvarna iQ series robot lawn mower.
Husqvarna’s new robot mowers offer GPS for less
best Netflix series Community
7 best shows about college you can stream now
iPhone 16 Pro vs iPhone 16 Pro Max in hand showing displays
Forget iPhone 17 — iPhone 18 could get this huge upgrade
Bernie
I’m a big fan of this offbeat comedy thriller starring Jack Black — and you can stream it free on YouTube right now
Samsung S90D OLED TV on table in living room
Own a Samsung TV? 7 tips and tricks you need to know
Miracle Mile
Prime Video has one of the most unsettling apocalyptic thrillers I’ve ever watched — here's why you should stream it
Jessica Chastain and Idris Elba in Molly's Game
This gripping thriller with Jessica Chastain is leaving Netflix soon — and it’s ‘Certified Fresh’ on Rotten Tomatoes
NYTimes Connections
NYT Connections today hints and answers — Sunday, March 23 (#651)
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #385 (Sunday, March 23 2025)