Media Center

DJI Statement On Reported Data Security Issue

News2017-11-16

DJI Statement On Reported Data Security Issue

DJI is investigating the reported unauthorized access of one of DJI’s servers containing personal information submitted by our users.                             

As part of its commitment to customers’ data security, DJI engaged an independent cyber security firm to investigate this report and the impact of any unauthorized access to that data. Today, a hacker who obtained some of this data posted online his confidential communications with DJI employees about his attempts to claim a “bug bounty” from the DJI Security Response Center.

DJI implemented its Security Response Center to encourage independent security researchers to responsibly report potential vulnerabilities. DJI asks researchers to follow standard terms for bug bounty programs, which are designed to protect confidential data and allow time for analysis and resolution of a vulnerability before it is publicly disclosed. The hacker in question refused to agree to these terms, despite DJI’s continued attempts to negotiate with him, and threatened DJI if his terms were not met.

DJI takes data security extremely seriously, and will continue to improve its products thanks to researchers who responsibly discover and disclose issues that may affect the security of DJI user data and DJI’s products. DJI has paid thousands of dollars to almost a dozen researchers who have submitted reports to the Security Response Center and agreed to the terms for payment. As the Security Response Center receives new reports, DJI regularly agrees to pay new bounties to researchers for their discoveries.

More details about the Security Response Center and information on how to submit bugs are available on the center’s website at security.dji.com.

For additional information, please contact: pr@dji.com

Recent News

We Value Your Privacy
We use cookies and other similar technologies to operate and improve our site, as described in our Cookie Policy. With your consent, our third-party partners also use these technologies to collect information about your activities on our websites for analytics and advertising purposes. You can manage your settings at any time through Cookie Preferences.
Do Not Sell or Share My Personal Information
We do not disclose your personal information to third parties in exchange for monetary consideration. Nevertheless, under certain U.S. state privacy laws, such as the California Consumer Privacy Act ("CCPA") and the Virginia Consumer Data Protection Act ("VCDPA"), disclosing personal information for personalized advertising purposes may be considered a "sale" or "sharing" of personal information, or processing for "targeted advertising" purposes. Residents of these U.S. states have the right to opt out of the "sale" or "sharing" of their personal information or the processing of their personal information for "targeted advertising." This opt-out right may vary by state, but we nevertheless offer a unified option for our U.S. customers to exercise this right.

If you want to opt out of the sale or sharing of your personal information or processing for targeted advertising, please deselect the “Marketing Cookies” checkbox through Cookie Preferences. Please note that you will need to opt out on each browser you use.

You can learn more about how we collect, use, and disclose your personal information, as well as other rights and choices you may have, by reviewing our Cookie Policy.
Cookie Preferences
We use different types of cookies on our websites as listed below. They help us to operate and improve our websites, and enable us to provide certain features of our websites and online services to you. View our Cookie Policy for more information.