All companies reassure users that they are not, but unfortunately in Amazon’s case, that reality was almost proven true. According to researchers from security firm Checkmarx (via CNET), it seems that they have discovered a flaw in Alexa that allowed Echo devices to be listening all the time and also allow others to eavesdrop.
The good news is that Checkmarx reached out to Amazon before disclosing the flaw publicly, and that Amazon has since fixed the issue. It is unclear as to whether or not hackers might have exploited the flaw before it was fixed, but so far we haven’t heard anything. In a statement made by Amazon, “Customer trust is important to us and we take security and privacy seriously. We have put mitigations in place for detecting this type of skill behavior and reject or suppress those skills when we do.”