Millions of Shark Robot Vacuums Vulnerable to Unpatched Remote Code Execution Flaw

Millions of Shark robot vacuums are vulnerable to a critical remote code execution flaw stemming from insecure AWS IoT Core configurations that allow attackers to access cameras, home maps, and Wi-Fi credentials. Because no official firmware patch is currently available, experts recommend isolating these devices on a separate network to mitigate potential unauthorized control.

Edward Kiledjian @ekiledjian