DJI Robot Vacuum Hack: Difference between revisions
No edit summary |
|||
| Line 15: | Line 15: | ||
==[Incident]== | ==[Incident]== | ||
{{Ph-I-I}} | {{Ph-I-I}} | ||
In 2025, Sammy Azdoufal created an app to control his new DJI robot vacuum. As a result of the device utilizing one API key, he had access to 7 thousand of the same vacuum.<ref name="Verge">{{Cite web|url=https://www.theverge.com/tech/879088/dji-romo-hack-vulnerability-remote-control-camera-access-mqtt|title=The DJI Romo robovac had security so poor, this man remotely accessed thousands of them|first=Sean|last=Hollister|date=2026-02-14|work=The Verge}}</ref> | |||
===[Company]'s response=== | ===[Company]'s response=== | ||
{{Ph-I-ComR}} | {{Ph-I-ComR}} | ||
After this vulnerability was told to DJI by Sammy and The Verge, remote access to the robot was disabled with that key.<ref name="Verge" /> | |||