|
|
|
|
|
|
by theappanalyst
1370 days ago
|
|
|
I enjoyed when a french hacker used information from my blog to set off all the alarms of Bird scooters in Lyon France for an evening. I had written about (what I considered as) a vulnerability that allowed remote triggering of Bird Scooter alarms (Bird disagreed of course) on my blog [1]. I then saw this github repo linked in the comments for setting off alarms of Bird scooters [2] and reached out to the author. The author let me know that they had used the info in my blog to script a tool for setting off Bird Scooters en masse. They then targeted the script at all the scooters in Lyon and subsequently fell asleep. When they woke up the noticed the end point was disabled... Bird had taken the action to disable the API endpoint in response of course. Probably would've been easier to fix before someone scripted it out but it made for a fun story. [1] https://theappanalyst.com/bird.html
[2] https://github.com/pcouy/bird-whisperer |
|
|