Cybersecurity company IOActive has figured out how to hijack the Segway MiniPro “self-balancing personal transporter” through its Bluetooth connection.
The MiniPro, which retails for $600, allows for remote control of the hoverboard-scooter hybrid (seriously, who thought this was a good idea?) through a Bluetooth app. And there’s no way to turn off the Bluetooth if your hoverboard is hacked.
While people can’t cause battery explosions, “an attacker could bypass safety systems and remotely take control of the device, including changing settings, pace, direction, or even disabling the motor and bringing it to an abrupt and unexpected stop while a rider is in motion,” says the press release. Hackers could even track and discover the location of the hoverboard user through this exploit.
IOActive did let Segway know about these issues, and they have patched some of the vulnerabilities in the product. Still, this is an increasing problem as devices are becoming more connected. Without proper security, these devices and their users are incredibly vulnerable. At this point, not implementing security for connected devices is shoddy at best and dangerous at worst.