What did the robot vacuum say to its homeowner? You suck. In a bizarre turn of events, owners of robot vacuums across the US have reported that their devices have been hacked. One particularly alarming case involved a man whose Ecovacs Deebot X2 began yelling racial slurs at him. The incidents appear to be linked to a security vulnerability in the Chinese-made Ecovacs Deebot X2 model, according to a report by the Australian Broadcast Corporation. The flaw has exposed widely distributed smart vacuums to manipulation by bad actors, raising concerns about the cybersecurity of internet-connected home devices.[1]
Minnesota lawyer Daniel Swenson told ABC that he initially thought his Chinese-made robot vacuum was malfunctioning when he began to hear weird sounds coming from it. He shockingly discovered someone else was accessing its camera and remote-control settings. Swenson reset the vacuum's password, only for it to begin zooming around and yelling the N-word repeatedly, all within earshot of one of his children. He turned the robot vacuum off and never turned it back on. Later, he realized that despite the vile language, the hack could have been much worse. The Ecovac had been in use on the same floor as his family's master bathroom, and the hackers could easily have seen something they weren't supposed to. "I just thought of it catching my kids or even me," Swenson said, "you know, not dressed."
Back in 2017, SecureWorld News reported that cybersecurity researchers took control of an LG 'Smart' vacuum and spied on the home through the device's camera. The video is unnerving. The breaches underscore the growing threat of vulnerabilities in IoT (Internet of Things) devices. With the increasing adoption of smart home technologies, ensuring robust security measures for such devices is crucial to prevent hackers from gaining control or accessing private information.
Smart home users should stay vigilant, update device software regularly, and implement network security best practices to mitigate risks. As the investigation continues, Ecovacs is expected to address these security concerns to safeguard their users from further incidents.
This article is shared at no charge for educational and informational purposes only.
Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization. We provide indicators of compromise information via a notification service (RedXray) or an analysis service (CTAC). For questions, comments or assistance, please contact the office directly at 1-844-492-7225, or feedback@redskyalliance.com
Weekly Cyber Intelligence Briefings:
- Reporting: https://www.redskyalliance.org/
- Website: https://www.redskyalliance.com/
- LinkedIn: https://www.linkedin.com/company/64265941
Weekly Cyber Intelligence Briefings:
REDSHORTS - Weekly Cyber Intelligence Briefings
https://register.gotowebinar.com/register/5378972949933166424
[1] https://www.secureworld.io/industry-news/hacked-robot-vacuums-iot-risks
Comments