Security nightmare: Sammy Azdoufal says he accidentally accessed ~7,000 DJI Romo vacuums worldwide while trying to control his new Romo with a PS5 pad — viewing live camera/mic feeds, battery/status and building 2D floorplans just from serials/tokens.
DJI says it patched a backend MQTT permission bug (Feb 8 & Feb 10) but critics warn encryption alone didn’t stop wide access and transparency is lacking. #IoT #Privacy
https://www.theverge.com/tech/879088/dji-romo-hack-vulnerability-remote-control-camera-access-mqtt
Security nightmare: Sammy Azdoufal says he accidentally accessed ~7,000 DJI Romo vacuums worldwide while trying to control his new Romo with a PS5 pad — viewing live camera/mic feeds, battery/status and building 2D floorplans just from serials/tokens.
DJI says it patched a backend MQTT permission bug (Feb 8 & Feb 10) but critics warn encryption alone didn’t stop wide access and transparency is lacking. #IoT #Privacy
https://www.theverge.com/tech/879088/dji-romo-hack-vulnerability-remote-control-camera-access-mqtt
It is nice they looked at #rust and found it good for #Linux, but may limit what platforms #Linux can run on. Curious what that means for #IOT, which I think tends to have little resources when compared to amd64.
I saw this post here on sdf/mastodon from a #NetBSD developer and it nicely explains why #rust as it is now is not really good for use on some systems:
un breve video su una parte della talk che porto tra qualche giorno al #fossdem in cui comparo quattro struumenti per comunicare senza internet: Bitchat vs Meshtastic vs Meshcore vs Reticulum
un breve video su una parte della talk che porto tra qualche giorno al #fossdem in cui comparo quattro struumenti per comunicare senza internet: Bitchat vs Meshtastic vs Meshcore vs Reticulum
New, from me: Who Operates the Badbox 2.0 Botnet?
The cybercriminals in control of Kimwolf -- a disruptive botnet that has infected more than 2 million devices -- recently shared a screenshot indicating they'd compromised the control panel for Badbox 2.0, a vast China-based botnet powered by malicious software that comes pre-installed on many Android TV streaming boxes. Both the FBI and Google say they are hunting for the people behind Badbox 2.0, and thanks to bragging by the Kimwolf botmasters we may now have a much clearer idea about that.
https://krebsonsecurity.com/2026/01/who-operates-the-badbox-2-0-botnet/
New, from me: Who Operates the Badbox 2.0 Botnet?
The cybercriminals in control of Kimwolf -- a disruptive botnet that has infected more than 2 million devices -- recently shared a screenshot indicating they'd compromised the control panel for Badbox 2.0, a vast China-based botnet powered by malicious software that comes pre-installed on many Android TV streaming boxes. Both the FBI and Google say they are hunting for the people behind Badbox 2.0, and thanks to bragging by the Kimwolf botmasters we may now have a much clearer idea about that.
https://krebsonsecurity.com/2026/01/who-operates-the-badbox-2-0-botnet/
This is very cool https://www.youtube.com/watch?v=moBCOEiqiPs
New, from me: The Kimwolf Botnet is Lurking in Corporate, Govt. Networks
A new Internet-of-Things botnet called Kimwolf has spread to more than 2 million devices, forcing infected systems to participate in massive distributed denial-of-service (DDoS) attacks and to relay other malicious and abusive Internet traffic. Kimwolf’s ability to scan the local networks of compromised systems for other IoT devices to infect makes it a sobering threat to organizations, and new research reveals Kimwolf is surprisingly prevalent in government and corporate networks.
https://krebsonsecurity.com/2026/01/kimwolf-botnet-lurking-in-corporate-govt-networks/
New, from me: The Kimwolf Botnet is Lurking in Corporate, Govt. Networks
A new Internet-of-Things botnet called Kimwolf has spread to more than 2 million devices, forcing infected systems to participate in massive distributed denial-of-service (DDoS) attacks and to relay other malicious and abusive Internet traffic. Kimwolf’s ability to scan the local networks of compromised systems for other IoT devices to infect makes it a sobering threat to organizations, and new research reveals Kimwolf is surprisingly prevalent in government and corporate networks.
https://krebsonsecurity.com/2026/01/kimwolf-botnet-lurking-in-corporate-govt-networks/
Updates! 🚨 Flowvi.be [flowvibe] 1.6.4 is now available with AirPlay controls, its very first Shortcuts and some “under the hood” improvements
https://apps.apple.com/be/app/flowvi-be-mood-playlist-maker/id6751832113
Näin se tehdään oikein:
Bose lakkauttaa vanhimpien älykaiutintensa tuen lähiaikoina. Mutta yhtiö julkaisi rajapintojen kuvaukset avoimena lähdekoodina - ja siirtää ison osan toiminnallisuudesta suoraan kännykkäsovellukseen.
Eli tuen loppumisesta huolimatta älykaiuttimet eivät muutu "tyhmiksi", vaan niihin voidaan luoda jopa uusiakin toimintoja.
https://dawn.fi/uutiset/2026/01/15/bose-avoin-lahdekoodi-kaiutin
#bose #avoinlahdekoodi #oss #iot #älykoti #uutiset #teknologia #tekniikka
Näin se tehdään oikein:
Bose lakkauttaa vanhimpien älykaiutintensa tuen lähiaikoina. Mutta yhtiö julkaisi rajapintojen kuvaukset avoimena lähdekoodina - ja siirtää ison osan toiminnallisuudesta suoraan kännykkäsovellukseen.
Eli tuen loppumisesta huolimatta älykaiuttimet eivät muutu "tyhmiksi", vaan niihin voidaan luoda jopa uusiakin toimintoja.
https://dawn.fi/uutiset/2026/01/15/bose-avoin-lahdekoodi-kaiutin
#bose #avoinlahdekoodi #oss #iot #älykoti #uutiset #teknologia #tekniikka
@cheri_alliance has posted about the Secure Horizons event in Duxford next week, which will be a great event for people who want to understand how CHERI (and, especially, CHERIoT) can make regulator compliance easier for secure IoT devices (as well as actually making them more secure).
Registration is still open and some SCI folks will be there!
Got distracted and added initial support for Widgets and Shortcuts 😅. Create mood playlists via your own workflows sounds cool. What shortcuts would you find useful?
#IndieDev #AppleMusic #IoT
Bose is saving the world from tons of electronic garbage by open-sourcing their discontinued speaker. This applaudable behaviour should be the default for all IoT manufacturers, as it brings true sustainability to the tech in our homes.
#opensource #sustainability #iot
https://www.designboom.com/technology/bose-recycles-discontinued-wireless-speakers-open-source-01-09-2026/
Right, that last one's gone live so it's time to round up today's #Hackster articles. First up, a rare volte-face from #Bose - well, kinda: instead of bricking its SoundTouch app entirely in February, it's now releasing a final update to allow some functionality when the cloud servers are turned off *and* opening up the API so others can write compatible software.
No, nothing's been "open-sourced," despite what you may have read elsewhere.