Skip to main content

DJI Vulnerability Let Hackers Spy on Drones

posted onNovember 8, 2018
by l33tdawg
NextGov
Credit: NextGov

DJI is one of the world's leading drone companies, providing tools for both consumers and corporations alike.

With such a massive reach, a security flaw could be especially damaging, and researchers from Security Firm Research discovered just that, CNET reports. A hole in DJI.com's code could have allowed people to steal access tokens on DJI forums. From there, they could easily log in to someone's account without needing a password because DJI used the same authentication for both its forums and apps.

Any hackers who exploited the vulnerability would be able to access live footage from DJI's Flight Hub tool, giving away a drone user's location. In some instances, a hacker could control multiple drones. Hackers would also be able to access the last four digits of users' credit cards as well as photos taken from previous drone flights.

Source

Tags

Industry News

You May Also Like

Recent News

Friday, November 29th

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th