Check Point researchers found a vulnerability in the user authentication process that would have let an attacker hijack user accounts and gain access to DJI’s web store, cloud server data, and FlightHub. DJI drones are widely used in industry, manufacturing, agriculture, and critical infrastructure. The vulnerability was accessed through DJI Forum, an online forum DJI runs for discussions about its products, the researchers concluded in their report. A social engineering attack on the DJI forum would have been enough to compromise thousands of drones.”]