• Home
  • Latest
  • Fortune 500
  • Finance
  • Tech
  • Leadership
  • Lifestyle
  • Rankings
  • Multimedia

Trendingnow

1

Ex-PepsiCo CEO Indra Nooyi worked from midnight until 5 a.m. as a receptionist to pay for her Yale degree—and she says ‘respect went up’ because of it

2

Shark Tank's Kevin O'Leary says if he were 25 today, he'd chase these two booming opportunities in the world of AI

3

China’s birth rate just hit its lowest point since 1949—and Trip.com cofounder James Liang thinks that’s a threat to innovation

1

Ex-PepsiCo CEO Indra Nooyi worked from midnight until 5 a.m. as a receptionist to pay for her Yale degree—and she says ‘respect went up’ because of it

2

Shark Tank's Kevin O'Leary says if he were 25 today, he'd chase these two booming opportunities in the world of AI

3

China’s birth rate just hit its lowest point since 1949—and Trip.com cofounder James Liang thinks that’s a threat to innovation
CybersecurityRobotics

One man accidentally gained access to thousands of robot vacuums, exposing the AI cyber nightmare risk facing millions of Americans

Nick Lichtenberg
By
Nick Lichtenberg
Nick Lichtenberg
Business Editor
Down Arrow Button Icon
Nick Lichtenberg
By
Nick Lichtenberg
Nick Lichtenberg
Business Editor
Down Arrow Button Icon
February 25, 2026, 12:36 PM ET
robot
Who, or what, is controlling your robot vacuum?Getty Images
Add Fortune on Google for similar content.

When software engineer Sammy Azdoufal sat down to steer his new DJI Romo robot vacuum with a PlayStation 5 video game controller, he didn’t expect to accidentally commandeer a global surveillance network. Using an AI coding assistant to reverse-engineer how the vacuum communicated with DJI’s remote servers, Azdoufal extracted a security token meant to prove he owned his specific device. Instead, as reported by Popular Science, the backend servers treated him as the owner of nearly 7,000 robot vacuums operating across 24 countries.

Recommended Video

With a few keystrokes, Azdoufal discovered he could tap into live camera feeds, activate microphones, and even compile 2D floor plans of strangers’ private homes. While he responsibly reported the security bug (to The Verge) rather than exploiting it, this staggering vulnerability highlights a terrifying reality: The rapid, unchecked integration of automated systems is creating a massive and unprecedented security gap.

Millions of Americans are increasingly welcoming these internet-connected devices into their most intimate spaces. Roughly 54 million U.S. households had at least one smart home device installed as of 2020, per Parks Associates. Furthermore, companies like Tesla, Figure, and 1X are racing to introduce sophisticated, humanoid autonomous robots capable of living in homes and performing complex chores.

The surveillance capabilities of smart devices became a national talking point earlier this year, when a Google Nest device apparently stored footage on the cloud of the alleged kidnapping of Nancy Guthrie, mother of Today show host Savannah Guthrie. That was followed shortly afterward by an Amazon Super Bowl ad for its Ring product, meant to depict the charming rescue of a lost dog but actually revealing that networked cameras capable of spying on Americans are everywhere. The backlash seemingly prompted Amazon to discontinue its partnership with a police surveillance firm. Once you add autonomous AI agents into this mix, you have what cybersecurity giant Thales describes as a budding nightmare scenario.

The nightmare scenario around the corner

According to the recently released Thales 2026 Data Threat Report, a stunning 70% of organizations now explicitly cite AI as their top data security risk. And just like the DJI vacuums relying on remote cloud servers, enterprises are eagerly embedding AI into their daily workflows, granting automated systems broad access to sprawling enterprise data.

The core issue is a shocking lack of visibility and foundational data control. The Thales report reveals only 34% of organizations actually know where all their sensitive data resides. And because AI systems continuously ingest and act upon information across vast cloud environments, it is incredibly difficult to enforce “least-privilege access,” or the practice of granting only the minimum necessary access rights. If a machine’s credentials—such as tokens or API keys—are compromised, the resulting data exposure can be devastating.

In fact, credential theft is currently the leading attack technique against cloud management infrastructure, cited by 67% of organizations that have suffered cloud attacks. Imagine not just the 7,000 robotic vacuum cleaners, but a whole community’s Nest or Ring devices, being controlled by an AI agent instead.

Rodney Brooks, cofounder of iRobot, creator of the Roomba vacuum, said Elon Musk’s vision of a future powered by humanoid robots was “pure fantasy thinking,” because they’re just too clumsy.

“Today’s humanoid robots will not learn how to be dexterous despite the hundreds of millions, or perhaps many billions of dollars, being donated by VCs and major tech companies to pay for their training,” Brooks wrote in a blog post. It’s unclear if that thinking extends to a human or AI agent controlling that robot remotely.

“Insider risk is no longer just about people. It is also about automated systems that have been trusted too quickly,” warned Sébastien Cano, senior vice president of cybersecurity products at Thales. When basic security measures like identity governance and access policies are weak, Cano notes, “AI can amplify those weaknesses across corporate environments far faster than any human ever could.”

Making matters worse, the very tools used to build software are lowering the barrier to entry for exploiting these systems. AI-powered coding tools—like the one Azdoufal used to easily reverse-engineer the DJI servers—make it significantly easier for individuals with less technical knowledge to uncover and exploit software flaws. Despite these escalating automated threats, only 30% of companies surveyed currently have a dedicated AI security budget, relying instead on traditional perimeter defenses built for human users.

As Eric Hanselman, chief analyst at S&P Global’s 451 Research, pointed out, a fundamental paradigm shift is urgently required.

“As AI becomes deeply embedded into enterprise operations, continuous data visibility and protection are no longer optional,” Hanselman stated.

Without a radical rethinking of identity and encryption protocols, society is essentially leaving the front door wide open for the proverbial next software engineer with a video game controller.

Subscribe to Fortune Gulf Brief. Every Tuesday, this new newsletter delivers clear-eyed, authoritative intelligence on the deals, decisions, policies, and power shifts shaping one of the world’s most consequential regions, written for the people who need to act on it. Sign up here.
About the Author
Nick Lichtenberg
By Nick LichtenbergBusiness Editor
LinkedIn icon

Nick Lichtenberg is business editor and was formerly Fortune's executive editor of global news.

See full bioRight Arrow Button Icon
Add Fortune on Google for similar content.

Latest in Cybersecurity

Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025

Most Popular

Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Fortune Secondary Logo
Rankings
  • 100 Best Companies
  • Fortune 500
  • Global 500
  • Fortune 500 Europe
  • Most Powerful Women
  • World's Most Admired Companies
  • See All Rankings
  • Lists Calendar
Sections
  • Finance
  • Fortune Crypto
  • Features
  • Leadership
  • Health
  • Commentary
  • Success
  • Retail
  • Mpw
  • Tech
  • Lifestyle
  • CEO Initiative
  • Asia
  • Politics
  • Conferences
  • Europe
  • Newsletters
  • Personal Finance
  • Environment
  • Magazine
  • Education
Customer Support
  • Frequently Asked Questions
  • Customer Service Portal
  • Privacy Policy
  • Terms Of Use
  • Single Issues For Purchase
  • International Print
Commercial Services
  • Advertising
  • Fortune Brand Studio
  • Fortune Analytics
  • Fortune Conferences
  • Business Development
  • Group Subscriptions
About Us
  • About Us
  • Press Center
  • Work At Fortune
  • Terms And Conditions
  • Site Map
  • About Us
  • Press Center
  • Work At Fortune
  • Terms And Conditions
  • Site Map
  • Facebook icon
  • Twitter icon
  • LinkedIn icon
  • Instagram icon
  • Pinterest icon

Latest in Cybersecurity

Palantir CEO Alex Karp with his arms outstretched while making a point on stage.
NewslettersEye on AI
Palantir CEO Alex Karp is wrong about the threat Anthropic and OpenAI pose to most enterprises. That doesn’t mean he doesn’t have something to lose
By Jeremy KahnJuly 7, 2026
4 hours ago
South Korean law targeting ‘fake news’ takes effect, but journalists say it discourages critical reporting and can lead to self-censorship
AsiaSouth Korea
South Korean law targeting ‘fake news’ takes effect, but journalists say it discourages critical reporting and can lead to self-censorship
By The Associated Press and Kim Tong-HyungJuly 7, 2026
7 hours ago
From missiles to malware: Why the Gulf is stepping up its operational resilience 
Cybersecuritydata breach
From missiles to malware: Why the Gulf is stepping up its operational resilience 
By Melissa HancockJuly 7, 2026
14 hours ago
A man in an orange vest opens door to a cargo truck.
AIData centers
Organized crime is building an AI hardware cargo theft economy: ‘The economics have become just crazy from the criminal opportunistic perspective’
By Sasha RogelbergJuly 3, 2026
5 days ago
Anthropic CEO Dario Amodei
NewslettersEye on AI
Anthropic’s Fable model is back. But U.S. AI policy is still a mess
By Jeremy KahnJuly 2, 2026
5 days ago
Anthropic CEO Dario Amodei
AIAnthropic
Anthropic’s AI models are back online after a two-week government standoff—settling the company and administration into a fragile truce
By Tristan BoveJuly 1, 2026
6 days ago

Most Popular

Ex-PepsiCo CEO Indra Nooyi worked from midnight until 5 a.m. as a receptionist to pay for her Yale degree—and she says ‘respect went up’ because of it
Success
Ex-PepsiCo CEO Indra Nooyi worked from midnight until 5 a.m. as a receptionist to pay for her Yale degree—and she says ‘respect went up’ because of it
By Preston ForeJuly 6, 2026
1 day ago
Shark Tank's Kevin O'Leary says if he were 25 today, he'd chase these two booming opportunities in the world of AI
AI
Shark Tank's Kevin O'Leary says if he were 25 today, he'd chase these two booming opportunities in the world of AI
By Marco Quiroz-GutierrezJuly 5, 2026
2 days ago
China’s birth rate just hit its lowest point since 1949—and Trip.com cofounder James Liang thinks that’s a threat to innovation
Asia
China’s birth rate just hit its lowest point since 1949—and Trip.com cofounder James Liang thinks that’s a threat to innovation
By Nicholas GordonJuly 7, 2026
16 hours ago
Current price of oil as of July 6, 2026
Personal Finance
Current price of oil as of July 6, 2026
By Joseph HostetlerJuly 6, 2026
1 day ago
The man who ran Bernie's campaign says Democrats are still making the same mistakes with Democratic Socialists, and they should laud Mamdani's win
Politics
The man who ran Bernie's campaign says Democrats are still making the same mistakes with Democratic Socialists, and they should laud Mamdani's win
By Catherina GioinoJuly 6, 2026
1 day ago
Even as Elon Musk calls philanthropy ‘very hard,’ everyday Americans gave a record $617 billion—despite feeling the squeeze over the cost of living
Success
Even as Elon Musk calls philanthropy ‘very hard,’ everyday Americans gave a record $617 billion—despite feeling the squeeze over the cost of living
By Preston ForeJuly 4, 2026
4 days ago

© 2026 Fortune Media IP Limited. All Rights Reserved. Use of this site constitutes acceptance of our Terms of Use and Privacy Policy | CA Notice at Collection and Privacy Notice | Do Not Sell/Share My Personal Information
FORTUNE is a trademark of Fortune Media IP Limited, registered in the U.S. and other countries. FORTUNE may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.