Drone maker DJI left its private SSL, firmware keys open to world+dog on GitHub FOR YEARS

Welcome to RCTalk

Come join other RC enthusiasts! You'll be able to discuss, share and private message with other members of our community.

This site may earn a commission from merchant affiliate
links, including eBay, Amazon, and others.

WoodiE

Kind of good admin
Administrator
Messages
15,854
Reaction score
2,631
Location
Lexington, KY
RC Driving Style
  1. Bashing
Well this is embarrassing...

DJI left it's AWS credentials, private SSL, firmware keys and more publicly accessible for years! Looks like plenty of personal information was passed through the system. No idea if any attackers have taken advantage of this info, but it seems even the US government knew DJI wasn't very secure as the US Army had banned their use earlier this year.

Read more here.
 
Back
Top