DJI Robot Vacuum Hack: Difference between revisions
mNo edit summary |
|||
| (One intermediate revision by the same user not shown) | |||
| Line 1: | Line 1: | ||
{{stub}} | |||
{{IncidentCargo | {{IncidentCargo | ||
|Company=DJI | |Company=DJI | ||
| Line 15: | Line 16: | ||
==[Incident]== | ==[Incident]== | ||
{{Ph-I-I}} | {{Ph-I-I}} | ||
In 2025, Sammy Azdoufal created an app to control his new DJI robot vacuum. As a result of the device utilizing one API key, he had access to 7 thousand of the same vacuum.<ref name="Verge">{{Cite web|url=https://www.theverge.com/tech/879088/dji-romo-hack-vulnerability-remote-control-camera-access-mqtt|title=The DJI Romo robovac had security so poor, this man remotely accessed thousands of them|first=Sean|last=Hollister|date=2026-02-14|work=The Verge}}</ref> | |||
===[Company]'s response=== | ===[Company]'s response=== | ||
{{Ph-I-ComR}} | {{Ph-I-ComR}} | ||
After this vulnerability was told to DJI by Sammy and The Verge, remote access to the robot was disabled with that key.<ref name="Verge" /> | |||
| Line 29: | Line 32: | ||
==References== | ==References== | ||
{{reflist}} | {{reflist}} | ||
[[Category:DJI]] | |||