Rapid7 reveals three security flaws it discovered in the mobile conferencing device Double Telepresence Robot. Two of three vulnerabilities disclosed to Double Robotics were patched in January. The flaws were deployed about a week after the flaws were disclosed to the company. Unauthenticated access to data, static user session management and weak Bluetooth pairing vulnerabilities were also revealed. The vulnerabilities were disclosed on Jan 9 and patched on Jan. 16, according to Rapid7. No calls were compromised and no sensitive customer data was exposed, the company said.”]

