Tal Ater of Israel has published exploit code for a bug in Google s Chrome browser that could allow a malicious website to eavesdrop using a computer’s microphone long after a visitor has left a website. The exploit depends on a user giving the website permission to use the microphone. With the exploit, the indicator light in Chrome will not flash and the user will not know they re being eavesdropped. The W3C, in November, updated its Web Speech API Specification and indications are that the behavior may be in line with the standard.
Source: https://threatpost.com/chrome-eavesdropping-exploit-published/103798/