- cross-posted to:
- [email protected]
- technology
- nottheonion
- cross-posted to:
- [email protected]
- technology
- nottheonion
“It could have been worse,” one owner incredibly concluded.
You must log in or register to comment.
Michael Reeves did it first.
Precisely why I won’t use any of their camera robots. That, and Vacuum Wars said the Lidar performed better than the AI obstacle avoidance.
Wait, this situation is way worse than what’s on the headline. These things (ecovac robot vaccums) have remotely accessible cameras? What in the Heebie Jeebus?
He opened the vacuum’s app to find a stranger was accessing its live camera feed and remote control feature, but assumed it might be an error.
Unless and until companies are held truly accountable for releasing stuff with this bad of security baked in, we’re going to keep seeing this sort of story.
On one hand, that’s pretty funny. But why would you allow the thing on the internet? No experience with robot vacuums, but don’t you just throw in on the floor? Set and forget?
They gotta harvest your data somehow
It needs to communicate to the phone app somehow and anything else is going to be too big a hurdle for a huge portion of the customer base.
They would be within the same local wifi network. Or you could even use Bluetooth for a direct connection. There’s no reason for those things to connect to the internet, unless you want to update the firmware. Anything else is just a security and privacy risk.
Even to update firmware, your phone could download the blob from the servers and then send it to the device via Bluetooth.
I don’t think you’d even need the device itself to be connected to the internet for firmware. Your phone connects to the internet, gathers up the firmware, sends it to the device over BT. That’s how my helmet comms work.
If the device is connected to the local network and has some sort of maintenance UI then it might as well. I just don’t want it to be constantly connected or do it on its own.
anything else is going to be too big a hurdle for a huge portion of the customer base.
That’s just a lie companies tell to try to excuse their theft of your data. They could make it work locally and be user-friendly at the same time if they wanted to, but they just don’t want to.
