Xiaomi’s M365 Electric Scooter comes with a mobile app that allows riders to securely interact with their scooters remotely. A remote attacker, up to 100 meters away, could send unauthenticated commands over Bluetooth to a targeted vehicle without requiring the user-defined password. Remote attackers can even target an individual rider and cause the scooter to suddenly brake or accelerate. There is no mitigation that users can deploy at their end, so riders are recommended to implement the patches as soon as they become available.
Source: https://thehackernews.com/2019/02/xiaomi-electric-scooter-hack.html