The 15-second ad triggers Google devices with the command, "Ok Google, what is the Whopper burger?" The spot will run nationally during primetime starting Wednesday [...]
Here's where we encountered the major flaw with Burger King's ad. Someone had edited the Whopper's Wikipedia page to say that the burger is made of a "medium-sized child," instead of beef patty, and that it contains the toxic chemical Cyanide.
Burger King later edited the Wikipedia page to a more accurate description of the burger. But people keep changing it.
On Wednesday afternoon, the definition had been changed to: "The Whopper is the worst hamburger product sold by the international fast-food restaurant chain Burger King and its Australian franchise Hungry Jack's."
Today in Applied Demonology
TV ad trolls the live surveillance mic in your house:
My phone was smart enough to ignore this.
Google has apparently pushed out a change to detect the specific audio in this ad and ignore it.
BK probably doesn't care because this is mostly a stunt, i.e. the intended audience is really the press and blogs like this one, not the general public. But I'm looking forward to the arms race here.
There won't be one. Ad spots aren't cheap or fast to turn around, and it's apparently near trivial for Google to disable them. Not much point trying it on, which is as well; that wasn't shaping up to be a novel I want to live in.
In London there are currently ads on the tube which have a picture of a pregnancy scan result and someone saying "OK Alexa, put 'baby shower' in my calendar".
I am booking ad spots which consist of someone saying all combinations "OK (Alexa|Google|Siri|...), put (job interview|pregnancy test|HIV test|trial date|...) in my work calendar".
These things are so easy to attack in so many ways.
Also: on the assumption that these things send everything to the back end, can TV ads like this be used to launch DoS attacks on the infrastructure? I bet they can.
There's no chance that this is cheaper than renting a botnet, or even all that effective.
No, but it's legal.
I don't think paying a television station to broadcast something that launches a DoS attack suddenly makes that DoS attack legal, although your defense of "aw shucks I didn't know a lot of concurrent requests were bad!" an iota more plausible.
The bit I was thinking about was the 'buying access to botnets from organised criminals', as you well know, I'm sure.
The famous one is of a dj in the UK saying live on air, ok siri call mum...
I can't believe I have to be the one to point out that photo is a Big Mac, not a Whopper. Without pointless pedantic observations the internet as we know it will die.
And the Whopper isn't made from a medium-sized child, the Jumbo Jack is.