A $5,000 Lawn Mower Company Shut Down Remote Control After Hackers Could Take Over the Robots

Yarbo, a company that makes robotic lawn mowers, turned off the remote control feature for all its machines after a security researcher showed he could take over the devices from thousands of miles away. The problem affects about 11,000 lawn mowers worldwide. Each robot costs $5,000 and runs on a computer system connected to the internet, which allowed the hacker to operate them without permission.

The hack worked because Yarbo's engineers used the same password on every single robot they made, and that password was easy to find. Think of it like a home security system where the manufacturer puts the same master key on every lock they sell. Once someone figured out the password, they could get into any Yarbo robot, anywhere in the world.

Once a hacker had access, they could do more than just move the mower around. They could look through the robot's cameras, turn off the emergency stop button that prevents accidents, and even turn on the cutting blades by remote control. The company confirmed the researcher's findings and apologized for the security problems.

How These Robots Actually Work

Yarbo's machines are designed to do more than just mow lawns. The same robot can attach different tools to mow grass, blow snow, or blow leaves. Inside each 200-pound machine is a full computer running an operating system called Linux, along with cameras, wireless radios, and software that connects to a smartphone app.

The robots can handle large properties, track up to 150 different mowing zones using GPS, and work on hills as steep as 35 degrees. The snow blower attachment can clear up to 12 inches of snow. All this power and flexibility means the robots need constant internet connections to work properly, which is what made them vulnerable in the first place.

The Core Problem

Yarbo's engineers built a secret back door into their robots so they could fix problems and help customers without needing physical access to the machines. They did this by putting the same password on every robot, hardcoded into the system where it was easy to find. While this made customer support easier, it also meant anyone who discovered the password could unlock any Yarbo robot in the world.

With that password, a hacker gets complete control of the computer inside the machine. They can see what the robot sees, run different programs on it, or even turn it into a tool for launching attacks on other devices on the same home Wi-Fi network. The ability to disable the emergency stop button is particularly concerning because it removes the main safety protection that keeps the blades from hurting someone.

What Yarbo Is Doing About It

The company responded by shutting off remote access to all its robots while engineers work on a fix. Yarbo apologized publicly and said it would add better record-keeping for when the secret back door is used. However, the company has not yet said whether it will give each robot a unique password instead of using the same password for every machine.

Right now, owners cannot use their smartphone apps to check on or control their robots. For people who depend on these machines for snow removal in winter, this creates a real problem while Yarbo fixes the issue. The company hasn't announced when remote access will return.

Why This Matters

This kind of security failure has happened before with other smart devices. Earlier robotic vacuum cleaners and security cameras had similar problems where companies prioritized convenience over safety. These lawn mowers cost $5,000, which is expensive, and people buying them probably expect the same level of security you'd find in enterprise systems used by businesses.

The temporary loss of remote features affects more than just convenience. If someone relies on their Yarbo to clear snow automatically in winter, they now have to find another way to handle that job while waiting for the company to fix things. Yarbo advertises 24/7 customer support and a 30-day return policy, but the company now needs to add real security support to those promises.

The fact that about 11,000 of these robots are affected shows this is a real problem. While that number is small compared to smartphone hacking incidents, robotic lawn mowers are different because they move around outside your house, cut blades, and are connected to your home network. A compromised robot could cause real physical damage or give a hacker a way into your home network that would be difficult to detect.

Looking at what this means for the growing number of robots in homes and yards, the Yarbo situation shows that companies need to think about security from the beginning when they design these machines, not add it as an afterthought. As more autonomous robots become common in residential neighborhoods, the security choices companies make now will affect how much people trust them down the road.