Threatpost News Wrap Podcast for Nov. 9
The Threatpost editors break down the top news stories from this week. Continue reading Threatpost News Wrap Podcast for Nov. 9
Category Archives: DJI
DJI Patches Forum Bug That Allowed Drone Account Takeovers
Bug opened door for malicious link attack, giving hacker access to stored DJI drone data of commercial and consumer customers. Continue reading DJI Patches Forum Bug That Allowed Drone Account Takeovers
DJI plugs security flaws that could have enabled access to users’ data and drone images
Researchers at Check Point and DJI today shared details of a potential vulnerability that could have impacted DJI’s infrastructure. Vulnerability impact If exploited, the vulnerability would have given an attacker full access to a user’s account and th… Continue reading DJI plugs security flaws that could have enabled access to users’ data and drone images
Navigating an Uncharted Future, Bug Bounty Hunters Seek Safe Harbors
More companies are looking to adopt “safe harbor” language in their bug bounty programs to build trust with participants. Continue reading Navigating an Uncharted Future, Bug Bounty Hunters Seek Safe Harbors
Hands-On: Flying Drones with Scratch
I’ll admit it. I have a lot of drones. Sitting at my desk I can count no fewer than ten in various states of flight readiness. There are probably another half dozen in the garage. Some of them cost almost nothing. Some cost the better part of a thousand bucks. But I recently bought a drone for $100 that is both technically interesting and has great potential for motivating kids to learn about programming. The Tello is a small drone from a company you’ve never heard of (Ryze Tech), but it has DJI flight technology onboard and you can program …read more
Microsoft and DJI team up to bring smarter drones to the enterprise
At the Microsoft Build developer conference today, Microsoft and Chinese drone manufacturer DJI announced a new partnership that aims to bring more of Microsoft’s machine learning smarts to commercial drones. Given Microsoft’s current focus on bringing intelligence to the edge, this is almost a logical partnership, given that drones are essentially semi-autonomous edge computing devices. DJI […] Continue reading Microsoft and DJI team up to bring smarter drones to the enterprise
Drones emerge as new dimension in cyberwar
It sounds a little bit sci-fi, but make no mistake: The next front in cyberwar is literally above your head. Military technology companies from around the world are rushing to design, build and sell drones that hack and track, while others want to own the business of hacking of the drones themselves. The burgeoning market is foreshadowing battles that could play out in the skies and, for some companies, bring significant profits. It’s an immature set of technologies — lots of marketing, precious few finished products — but there is a growing appetite for them. “This market is about to blow up,” said Francis Brown, a partner at the cybersecurity consultancy Bishop Fox. “Everybody’s trying to grab market share. The next year or two is going to decide who will become Pepsi and Coke out of all these products.” As an act of research, as opposed to selling a product, Brown and Bishop Fox […]
The post Drones emerge as new dimension in cyberwar appeared first on Cyberscoop.
Frankendrones: Toy Quads With A Hobby Grade Boost
If you’re not involved in the world of remote controlled vehicles, you may not know there’s a difference between “toy” and “hobby” grade hardware. For those in the RC community, a toy is the kind of thing you’ll find at a big box store: cheap, works OK, but lacking in features and build quality. On the other hand, hobby hardware is generally considered to be of higher quality and performance, as well as being more modular. At the risk of oversimplification: if you bought it ready to go from a store it’s probably a toy, and if you built it …read more
Continue reading Frankendrones: Toy Quads With A Hobby Grade Boost
DJI drones likely spying for China, claims leaked intelligence bulletin
A leaked memo from the US Department of Homeland Security has potentially drawn a cloud over the excitement of unwrapping a DJI drone this Christmas.
Read more in my article on the Bitdefender BOX blog.
Continue reading DJI drones likely spying for China, claims leaked intelligence bulletin
How DJI fumbled its bug bounty program and created a PR nightmare
A software vulnerability disclosure program recently launched by popular drone maker DJI has turned into a messy public relations battle pitting several security researchers against the growing Chinese technology firm. After DJI recently launched a bug bounty program, two researchers — Sean Malia and Kevin Finisterre — publicly disclosed vulnerabilities in DJI products. The revelations resulted in the company challenging each researcher’s findings and seemingly threatening one with a lawsuit tied to the Computer Fraud and Abuse Act. For researchers who have been poking and prodding DJI’s digital properties and products for about three months, Malia and Finisterre stories strike a familiar tone. Several researchers who approached DJI with information about evident vulnerabilities say the outcome has been less than satisfactory. DJI disputes aspects of some of these accounts, but experts say the firm has gone too far. “Many companies mistake a bug bounty program for a penetration test, in which the […]
The post How DJI fumbled its bug bounty program and created a PR nightmare appeared first on Cyberscoop.
Continue reading How DJI fumbled its bug bounty program and created a PR nightmare