A recent discovery reported by The Verge has revealed a security vulnerability in DJI’s Romo robot vacuums, raising concerns about the safety of IoT devices.
Sammy Azdoufal, while attempting to control his personal vacuum using a gamepad, unexpectedly connected to DJI’s servers, granting him remote access to approximately 7,000 vacuums worldwide. This access allowed him to manipulate the vacuums, view live camera feeds, and track their movements and locations.
During a live demonstration, Azdoufal showcased the extent of his reach, revealing the alarming frequency at which these devices shared data with the servers. The incident highlights the potential risks associated with insufficient IoT security measures and the need for robust protection mechanisms in connected devices.
This breach serves as a stark reminder of the importance of prioritizing cybersecurity in IoT ecosystems to safeguard user privacy and prevent unauthorized access to smart devices.
Source: The Verge