Description: Hackers reportedly exploited a vulnerability in Ecovacs’s Deebot X2 robot vacuums, gaining unauthorized access to camera and microphone controls. Users reported privacy invasions and offensive language broadcasted through the devices. Although Ecovacs claimed to have resolved the security flaw, researchers suggest vulnerabilities remain that could potentially leave users exposed to surveillance and harassment through their AI-enabled devices.
Editor Notes: Reconstructing the timeline of events: (1) December 2023: Cybersecurity researchers Dennis Giese and Braelynn Luedtke reportedly reveal a security flaw in Ecovacs Deebot X2 at a hacking conference. The flaw, they claim, involves an insecure PIN system and Bluetooth vulnerability, and was reported to Ecovacs prior to going public. (2) May 24, 2024: Minnesota lawyer Daniel Swenson’s Deebot X2 is reported to have been hacked, allegedly emitting racial slurs and controlled remotely in his home. The same day, another hacked Deebot X2 reportedly chases a dog in Los Angeles while allegedly projecting offensive language. (3) May 29, 2024: In El Paso, Texas, another Deebot X2 is reported to have been hacked, allegedly yelling obscenities at the owner until unplugged. (4) October 10, 2024: An ABC Australia report presents confirmation of the hackability of the Deebot X2 and explaining the ongoing risk posed by the security flaws. Ecovacs responds to the incidents and attributes them to credential stuffing and denying a system breach. Ecovacs promises a security upgrade for the X2 series in November 2024. The Ecovacs statement can be read here: https://live-production.wcms.abc-cdn.net.au/d22cf5c9f95808b90a58ccae58a05b76.
Entidades
Ver todas las entidadesPresunto: un sistema de IA desarrollado por Ecovacs e implementado por Ecovacs Deebot X2 y Ecovacs, perjudicó a Ecovacs customers , Ecovacs Deebot X2 users y Daniel Swenson.
Estadísticas de incidentes
ID
842
Cantidad de informes
2
Fecha del Incidente
2024-05-24
Editores
Daniel Atherton
Informes del Incidente
Cronología de Informes
abc.net.au · 2024
- Ver el informe original en su fuente
- Ver el informe en el Archivo de Internet
translated-es-Robot vacuums in multiple US cities were hacked in the space of a few days, with the attacker physically controlling them and yelling obscenities through their onboard speakers.
The affected robots were all Chinese-made Ecovac…
futurism.com · 2024
- Ver el informe original en su fuente
- Ver el informe en el Archivo de Internet
translated-es-Hackers were able to gain control of camera-equipped robot vacuums around the United States — and at least one of them forced the cleaning robots to yell racist obscenities.
As ABC Australia reports, owners of Ecovacs' Deebot …
Variantes
Una "Variante" es un incidente que comparte los mismos factores causales, produce daños similares e involucra los mismos sistemas inteligentes que un incidente de IA conocido. En lugar de indexar las variantes como incidentes completamente separados, enumeramos las variaciones de los incidentes bajo el primer incidente similar enviado a la base de datos. A diferencia de otros tipos de envío a la base de datos de incidentes, no se requiere que las variantes tengan informes como evidencia externa a la base de datos de incidentes. Obtenga más información del trabajo de investigación.
Incidentes Similares
Did our AI mess up? Flag the unrelated incidents
Incidentes Similares
Did our AI mess up? Flag the unrelated incidents