A hacker ran me over with a robot lawn mower
www.theverge.com
I’m fine. Yarbo owners might not be.
  • Wispy2891@lemmy.worldEnglish
    0·
    1 month ago

    Did they vibe coded the backend?

    An hacker can get:

    • GPS position
    • Email address
    • Video feed
    • WiFi password
    • Root access to a Linux client in the same WiFi network of the victim which means can change the DNS servers in the router for a mitm Attack if the default password hasn’t been changed (and nobody changes that)

    And they demonstrated to the journalist…

    1. Get a list of every “smart” lawnmower nearby a nuclear plant
    2. Check the emails of the owner in LinkedIn or something like that to see who could work at that nuclear plant
    3. Have access to his home network and a video feed on a robot that can be remotely moved to other position to check the perimeter

    Scary

    • WhyJiffie@sh.itjust.worksEnglish
      0·
      1 month ago

      which means can change the DNS servers in the router for a mitm Attack if the default password hasn’t been changed (and nobody changes that)

      or if the device can succesfully spoof DHCP offers. perhaps crashing the real one, or just being faster somehow