Saturday, November 23rd

    The Rabbit R1 has been recording users' chats with no ability to delete them

    img
    Rabbit R1 has been hacked and stolen, exposing users' chat logs without the ability to delete them.

    According to the company's security bulletin, since the launch of Rabbit R1, the AI ​​assistant has stored users' chat logs on the device without the ability to delete them. Rabbit is currently addressing this issue with a software update that includes a new factory reset option to wipe the device. Previously, you could only unlink your account from R1, which did not delete all user data.

    Besides the new ability to completely delete local user data, the software update also fixes another creepy behavior of the R1. Before the update, the stored pairing data that allows the R1 hardware to add data to the Rabbithole log also had permission to read the log, meaning that if an R1 was stolen and hacked, user-saved queries, photos, and more could be leaked. Updates, R1 coupling data could not read the newspaper and could not be entered on the device, and rabbits have reduced the amount of newspapers stored on the device. "There are no signs that mating data is being used to extract rabbit newspaper data from the owner in front of the device."

    Rabbits draw security issues as a relatively short risk. This is an example of a stolen R1 that can show the bad actors requested by the last meteorological magazine, and sought the original owner. Security researchers discovered last month that jailbreaking devices could also distribute hard-coded API keys. The company promised to improve its security practices and "prevent similar issues in the future," and said it was conducting a comprehensive review of its device logging practices to ensure they were in line with standards "established in other sectors."

    Tags :