When you buy through our links, you’re supporting our mission.
Security researcher hijacks 11,000 robot mowers globally, extracting Wi-Fi passwords and GPS coordinates from $5,000 devices
→
By
All Articles by
→
·
Key Takeaways
Key Takeaways
Your $5,000 Yarbo robot mower sits in the garage, promising automated yard perfection. Meanwhile, a hacker halfway across the globe can fire up its spinning blades and drive it straight toward your front door. This isn’t a Black Mirror episode—it’s reality for roughly 11,000 Yarbo owners worldwide.
Security researcher Andreas Makris discovered that every single Yarbo robot contains hardcoded passwords, intentional backdoors, and safety systems that can be overridden remotely. “I can do whatever I want with all the bots. It’s completely unsecured,” Makris told The Verge. Even pressing the emergency stop button won’t save you if someone’s controlling your mower from another continent.
The demonstration was visceral: Makris hijacked operational Yarbo units mid-mowing session from Germany, overriding emergency stops and spinning blades at will. The 100-pound machines with tank-tread propulsion can be weaponized without the owner ever knowing.
Hackers can extract Wi-Fi passwords, email addresses, and precise GPS coordinates from hijacked devices.
The violation goes deeper than runaway lawn equipment. Makris demonstrated how attackers can harvest:
He even accessed live camera feeds from the robots’ navigation systems, turning your yard bot into a surveillance drone.
Wayne Yu, a Yarbo owner in California, initially shrugged off the security concerns. His attitude shifted when Makris showed him the Wi-Fi passwords and residential coordinates extracted from his device. “Not good. Not good,” Yu said, watching his private information displayed on a stranger’s screen.
The scope extends beyond individual privacy breaches. Makris identified 12 Yarbo robots within 3 kilometers of a major power plant, raising national security implications when autonomous devices with cameras can be controlled by unknown actors.
Yarbo’s response reveals a company more focused on marketing than security fundamentals.
When Makris first contacted Yarbo about the vulnerabilities, customer support dismissed the backdoor as a harmless “diagnostic tool.” The company’s credibility took another hit when investigators discovered Yarbo’s marketed Manhattan headquarters was actually a single office shared with auto detailers and an Etsy shop selling spiked leather bracelets.
Following public disclosure, Yarbo promised firmware patches and new security measures. But here’s the kicker: their automatic updates have been resetting user passwords back to factory defaults, re-exposing patched devices. The intentional backdoor “cannot be disabled by the owner, and is actively restored if removed,” according to Makris’s analysis.
As retired network architect Matt Petach put it, Yarbo’s security resembles “a chainsaw without a handguard, without a brake, with a loose chain that’s ready to take your leg off.” This follows the depressingly familiar IoT playbook—ship first, secure never. Your smart home devices aren’t just collecting dust; they’re collecting your most sensitive data while leaving the front door wide open. Consider investing in proper security systems to protect against these emerging threats.
Share this
You Might Also Like_
Our Editorial Process
At Gadget Review, our guides, reviews, and news are driven by thorough human expertise and use our Trust Rating system and the True Score. AI assists in refining our editorial process, ensuring that every article is engaging, clear and succinct. See how we write our content here →
Join over 100k Readers
Join 100,000+ readers discovering the coolest gadgets, smart buying guides, and the tech news that actually matters.
LATEST Lists_
4 of the Best Wearable Productivity Gadgets You Can Buy
23 Impressive Amazon Camping Gadgets and Outdoor Gear to Get Ready For Spring
15 Smart Home Gadgets That Make Daily Chores Disappear
Why Trust Gadget Review
With over 25 years of experience, our editorial process is built on human expertise, ensuring that every article is reliable and trustworthy. AI helps us shape our content to be as succinct and engaging as possible.
Learn more about our commitment to integrity in our Code of Ethics.
South Korea Just Ordained a Robot Monk – Apparently Buddhism Needs Better Wi-Fi
·
LG’s OLED Robot Faces Are Coming for Your Smart Home
·
Apple’s Rumored “Spatial iPhone” Could Bring Holograms to Your Phone
·
Spotify’s AI Agents Now Generate Your Personal Podcasts
·
Samsung Workers Reject $340K Bonus, Want Annual Payouts
·
Latest Buying Guides_
Latest Reviews_
Aiper Experts Duo Review
Absolutely Fresh
Vantrue Pilot 2 Review: The First Dash Cam That Sees What Your Headlights Can’t
Absolutely Fresh
Masterbuilt Gravity Series 1150 Review
Absolutely Fresh
Narwal Flow 2 Robot Vacuum Review
Absolutely Fresh
Dyson Clean+Wash Hygiene Review: The Floor Cleaner That Finally Gets It Right
Mixed Reviews
LATEST Resource Articles_
How to Connect Speakers to a Receiver
How to Use Aux Mode in a Bluetooth Speaker
How to Make Speakers Bluetooth
How to Connect Bluetooth Speakers to a PC
How to Connect Bluetooth Speakers to an Xbox One
TVs
Soundbars
Office Chairs
Gaming Chairs
Speakers
Printers
Computer Monitors
Gaming Headsets
Routers
Projectors
Vacuum Cleaners
Air Conditioners
Can You Trust What You Read Online?
Fake reviews are taking over tech journalism—45% of publications are faking product tests.
Sign up now for exclusive access to Gadget Review’s bombshell investigation. Plus, stay ahead with our daily newsletter, packed with news, lists, and deals you can trust.
We’re on a mission to fix the broken Product Review system.
1321 Upland Dr. PMB 18642
Houston, Texas 77043 USA
(737) 471-4266
[email protected]
Partner with us
INSIDE GR
CATEGORIES
Made with
© 2026 All Rights Reserved | Gadget Review
Accessibility • Privacy Policy • Cookie Policy • Disclaimer • Terms of Use