The probability of someone just happening on that conversation while listening in, at just the right time, to just the right security engineer of the many security engineers in the company, approaches the probability of someone accidentally discovering the security flaw on their own. I think. It's hard to know with probabilities that are vanishingly small.
> just happening on that conversation while listening in, at just the right time,
Not that I'm a nefarious hacker or anything, but if I were to have made an app that snooped this audio stream, I wouldn't stop there. The audio would be uploaded to some virtual server and I'd run some AI transcription against it, then run some combination of NLP search and good ol' regex to forward me any audio file and its transcription that contained words like password, security, vulnerability, login, pin number. Any series of numbers around 16 digits long, a list of all current members of congress and major foreign politicians and diplomats, fortune 500 ceo names...
For like $10/mo, (or even more likely, the cost of hijacking someone else's unsecured wordpress server) there can always be something listening.
