The company is confirming the security researcher’s findings, apologizing
·2 min read
Compiled by KHAO Editorial
— aggregated from 1 outlet + 9 references discovered via search.
See llms.txt for citation guidance.
◌ Single Source
“In the future, each device will use its own independent credentials to prevent one affected device from impacting the entire fleet,” Yarbo writes.
Key facts
On May 7, 2026, security researcher Andreas Makris published a detailed report identifying serious vulnerabilities in Yarbo’s remote diagnostic, credential management, and data-handling systems
Today, Yarbo has issued a thorough 1,200-word response that you can read in full
Security researcher Andreas Makris, who discovered the vulnerabilities, says he hasn’t yet been able to check whether he can still access them after Yarbo’s changes
The reporter would like to thank Mr. Andreas Makris for his work in identifying these issues and for his persistence in bringing them to their attention
Summary
Yesterday, the reporter told you how a hacker ran me over with a robot lawn mower. Today, Yarbo has issued a thorough 1,200-word response that you can read in full below. Importantly, though, Yarbo is not yet committing to remove the single most troubling thing about these robots. To be clear, Yarbo already previously claimed that its remote access was only available to authorized employees; their story proved that was not true.