voice squatting

Voice squatting is an attack method used by hackers on voice user interfaces(VUI). In this method, words that sound the same, are spelled differently, and words that are mispronounced are used to attack the voice-controlled user interface.

Attack targets for voice squatting are devices with voice-controlled user interfaces such as digital voice assistants or voice dialing. These devices use voice keywords to open third-party applications. This could allow end users requesting a vendor's app to open a fake app from the attacker. The attacker could register an app with a similar keyword with a vendor such as Amazon for this purpose. Once the user wants to access the desired app, the similar-sounding attacker app can be activated.

Voice squatting can also be used to request personally identifiable information ( PII).