Recent security incidents highlight how vulnerable our connected devices and digital systems can be. From hacking lawn mowers to privacy rollbacks on popular messaging apps, the tech world is facing new challenges. Here’s a look at some of the biggest stories making waves this week.

Hackable Robot Lawn Mower Sparks Security Concerns

A high-end robot lawn mower, costing around $5,000, has been found to have serious security flaws. These machines, which can also function as leaf blowers and snow shovels, are designed to operate autonomously in backyards. However, a security researcher uncovered multiple vulnerabilities that could allow hackers to take control remotely.

In particular, hackers could access the robot’s camera feeds, steal owners’ email addresses, Wi-Fi passwords, and even determine home locations. The company behind Yarbo has stated that their diagnostic environment isn’t publicly accessible, but demonstrations showed how easily these flaws could be exploited. The researcher nearly caused the robot to run over them during a live demo, illustrating the real risks involved. Yarbo has promised to develop a fix for at least some of these issues.

Meta Reverses Course on Instagram End-to-End Encryption

Meta, the parent company of Facebook and Instagram, has decided to drop support for end-to-end encryption on Instagram direct messages. This move reverses previous plans to protect user privacy with encrypted chats that even Meta couldn’t access. As of May 8, encryption on Instagram DMs has been turned off, making it easier for Meta to access conversations.

Meta had initially rolled out default encryption for Messenger and planned to eventually make encryption the standard on Instagram as well. However, due to low user adoption of the opt-in feature, the company decided to remove the option altogether earlier this year. Privacy advocates are concerned that this rollback could undermine encryption efforts globally, leaving user communications less secure.

This change has sparked criticism from security experts who warn that weakening encryption sets a dangerous precedent and could make users more vulnerable to surveillance and hacking.

Other Security and Privacy News This Week

In other developments, a ransomware attack on an education tech company caused widespread disruptions. The attack was claimed by a group called ShinyHunters and underscores how cybercriminals target institutions for ransom. Meanwhile, concerns about open internet security increased after researchers found thousands of apps with exposed code, risking sensitive data leaks.

The Department of Homeland Security has also taken legal action by subpoenaing Google to obtain location data of a critic of US immigration policies. The American Civil Liberties Union is challenging this move, arguing it violates privacy rights. Additionally, new research indicates that scammers and low-level hackers are increasingly eager to bypass AI filters and automated protections, seeking to exploit vulnerabilities for personal gain.

On the international front, Russia is working on a satellite internet service to rival Starlink, raising questions about privacy and security in space communications. All these stories remind us that as technology advances, so do the risks. Staying informed and cautious remains essential in today’s digital landscape.

Inspired by

• https://www.wired.com/story/security-news-this-week-hackable-robot-lawnmower-unlocks-a-new-nightmare/

Sources

• theverge.com
• co.uk
• fb.com
• cnn.com
• whitehouse.gov