Articles about dji

Yes, drone biz DJI's Go 4 app does phone home to China – sort of

Chinese drone firm DJI is pushing back against claims it quietly beams user data back to the homeland by releasing the results of an audit it paid for – which found the DJI Go 4 app indeed sends some data to Hong Kong. This follows on from last year’s embarrassing DJI security cockup in which we revealed the firm’s developers …
Gareth Corfield, 25 Apr 2018
A Robinson R22 light helicopter. Pic: Shutterstock

Helicopter crashes after manoeuvres to 'avoid... DJI Phantom drone'

A helicopter has crashed after reportedly manoeuvring hard to avoid a "DJI Phantom quadcopter," in what could be the first confirmed aircraft accident involving a drone. The crash was first reported this week by telly station Live 5 News, in South Carolina, USA, which saw a copy of a police report stating that a Robinson R22 …
Gareth Corfield, 16 Feb 2018
Github photo via Shutterstock

GitHub shrugs off drone maker DJI's crypto key DMCA takedown effort

Updated GitHub rejected a DMCA takedown request from Chinese drone-maker DJI after someone forked source code left in the open by a naughty DJI developer, The Register can reveal. This included AES keys permitting decryption of flight control firmware, which could allow drone fliers with technical skills to remove geofencing from the …
Gareth Corfield, 25 Jan 2018
PHP, image via Shutterstock

Multiple-guess quiz will make Brit fliers safer, hopes drone-maker DJI

Roundup British drone users will have to take a multiple-guess quiz before using their Christmas toys this year, while drone users appear to have, once again, got around pre-eminent drone maker DJI's software-based flight restrictions. These developments and others occurred over the busy Christmas and New Year period, being lost in …

'DJI Mavic' drone seen menacing London City airliner after takeoff

A "DJI Mavic type" drone was flown close to an airliner leaving London City Airport in September, a recently published UK Airprox Board report has revealed. The report [PDF] is unusual in that most drones involved in airprox incidents are not identified so specifically by pilots. A De Havilland Dash-8 turboprop airliner, …
Richard Priday, 11 Dec 2017

Researcher: DJI RCE-holes offered me $500 after I found Heartbleed etc on its servers

Updated Chinese drone-maker DJI’s bug bounty programme has been struck with fresh controversy after a security researcher claimed he was offered just $500 for reporting, among others, the years-old Heartbleed vulnerability. Infosec chap Sean Melia – no stranger to bug bounty programmes – said he discovered that DJI’s servers not only …
Gareth Corfield, 28 Nov 2017
Image by Maythee Voran https://www.shutterstock.com/gallery-3935591p1.html

Drone maker DJI left its private SSL, firmware keys open to world+dog on GitHub FOR YEARS

Chinese drone maker DJI left the private key for its dot-com's HTTPS certificate exposed on GitHub for up to four years, according to a researcher who gave up with the biz's bug bounty process. DJI also exposed customers' personal information – from flight logs to copies of government ID cards – to the internet from …
Gareth Corfield, 16 Nov 2017

DJI bug bounty NDA is 'not signable', say irate infosec researchers

Chinese drone maker DJI faces questions from infosec researchers about its bug bounty programme. Sources have told The Register that a non-disclosure agreement (NDA) they were invited to sign would result in the company "owning their actions". DJI's scheme to pay those that highlight security weaknesses, announced months ago …
Gareth Corfield, 16 Nov 2017

What is DJI Terra? Mystery builds over Chinese biz's trademark

Chinese drone firm DJI has trademarked the term "DJI Terra", spurring speculation that the unmanned aerial vehicle firm might be expanding into land-based products. The trademark application came to light as a post on a private Facebook group, seen by The Register, referred to a prototype being in existence last year and being …
Gareth Corfield, 15 Nov 2017
DJI Aeroscope drone locator, as seen in Brussels on 12 Oct 17

DJI Aeroscope won't stop drone-diddlers flying round airports

Updated DJI, the Chinese drone manufacturer, has been trying to win the trust of regulators with its new Aeroscope product. Yet the product itself falls short of its stated aim. Aeroscope, as we reported from Brussels a few weeks ago, is DJI's product for tracking its drones in flight, along with displaying the controlling operator's …
Gareth Corfield, 27 Oct 2017
A DJI Phantom 4 with camera detail. Pic: Shutterstock

Whose drone is that? DJI unveils UAV traffic tracking system

DJI, the Chinese drone firm, is launching its own Wi-Fi based drone identification and tracking system, Aeroscope, aimed at placating regulators who want to put limits on small drone flights. The move is to pre-emptively appease regulators such as the UK’s Civil Aviation Authority, the EU’s EASA and US’s FAA as they look at …
Gareth Corfield, 12 Oct 2017

Six weeks later, drone biz DJI deploys control app 'flight mode'

Chinese drone-maker DJI has re-announced its "local data mode" for phone-home UAVs, around six weeks after first promising to introduce it following the US Army banning use of its products. Back in August the US Army imposed a blanket ban on the use of all DJI products across the entire service, following unspecified “cyber …

Look, we know you're all hacking DJI drones. How 'bout a bug bounty?

Bending to public pressure as more and more drone hackers break into their kit, Chinese firm DJI has now announced a bug bounty program. "Security researchers, academic scholars and independent experts often provide a valuable service by analysing the code in DJI's apps and other software products and bringing concerns to …
Gareth Corfield, 29 Aug 2017
PHP, image via Shutterstock

DJI strips out code badness, reveals some GPL odds 'n sods

Chinese drone company DJI has removed hot-patching frameworks discovered in its apps by hackers – and is beginning to reveal GPL-licensed elements in its code. Informed sources told The Register the latest versions of DJI’s Go app, which is the mobile app used for controlling the firm’s drones in flight, have had JSPatch and …
Gareth Corfield, 29 Aug 2017

DJI's Spark drones to be bricked by September 1 unless firmware updated

Hackers have boasted that DJI's latest Spark drone firmware update was bypassed in mere hours – including downtime to enjoy the recent solar eclipse. DJI has announced that its popular Spark consumer drones will be bricked by September 1 unless users download the latest firmware update. "If the firmware of either the aircraft …
Gareth Corfield, 22 Aug 2017
"Bad dog": Owner wags finger at naughty bulldog

Drone-maker DJI's Go app contains naughty Javascript hot-patching framework

Updated Chinese drone firm DJI appears to have baked a hot-patching framework into its Go app that breaks Apple's App Store terms and conditions, according to drone hacker sources. The patching framework in question, JSPatch, appears to be baked into the iOS version of Go. Earlier this year Apple ejected a handful of JSPatch-using …
Gareth Corfield, 15 Aug 2017
Flak guns on a portion of the old Nazi German Atlantic Wall defence network. Pic: Shutterstock

US military gets authority to shoot down citizens' small drones

The US Army issued guidance to its formations a few months ago allowing it to shoot down consumer drones buzzing its units, according to reports. It is illegal to fly a consumer-grade drone within 400ft of a US Army base in April, the US Department of Defence stressed this week. Larger drones, or unmanned aerial vehicles, as …
US boxing glove, photo via Shutterstock

DJI drones: 'Cyber vulnerabilities' prompt blanket US Army ban

The US Army has issued a global order banning its units from using drones made by Chinese firm DJI, citing “cyber vulnerabilities”. The memorandum, issued by the US Army’s Lieutenant General Joseph Anderson, orders all US Army units with DJI products to immediately stop using them. “Due to increased awareness of cyber …

Create a news alert about dji, or find more stories about dji.

Biting the hand that feeds IT © 1998–2018