What other device should we try and research? Subscribe for more #cybernews

A physical hack through a debug port is not exactly the greatest heck of all times

Looking at a serial port with a multimeter is like taking time at the Olympics with a sundial

So you did not "hack" anything and found "nothing" :P Guy hypes up but its just another script kiddo :P

I find it hilarious that anyone took this guy seriously after his nft pump and dump.

10:30 to only say that the chip has got a vulnerability. C'mon..

This content is interesting but the delivery style is way too over the top. You don't have to act like you're doing an informercial.

Breaking News: A device is exploitable, given unlimited physical Access.

The rabbit R1 ain't nothing but the spotify car thing on steroids. Wait until the day they end support for it.

Ah yes mediatek, the most disgusting chip company ever. These people will literally make actual human shit if they could sell it to you.

They choose Mediatek because is the only logical and commercially viable option for this kind of devices.

You did not hack anything. People are running Linux in that R1.

Important thing to note: This doesn't tangibly affect the security of the device, only the end-user's ability to modify it. If a device software were modified by a third-party, this would require the bootloader to be unlocked, which would then launch an error message regarding such upon every single startup, alerting users to potential modification. If the device is AVB (Android Verified Boot) 2.0 compliant and supports avb_custom_key, it can be re-signed with another key (something I have only seen in Pixels and select OnePlus and Motorola devices), however it will still notify the user that it is loading a separate operating system. Any Android 10+ device is also mandated to be encrypted for Play Services certification, which may not apply to this device anyway, but this means if the bootloader were unlocked, it would dump the encryption key and force a factory reset, rendering the data effectively useless. It's about as much of a danger as Qualcomm's EDL mode.

So uhh, whats an example of the vulnerability besides the debugging port?

access to the debug port is something that everyone should have, as well as the tools to debug any and everything. The entire schematics should be public so that it can be repaired.

You didn't hack anything. You found a serial port that wasn't enabled, then tried someone else's exploit and found it still works.

I'm dealing with an exploit with my toothbrush. There's no place to put the batteries and it doesn't run, proving I've become a victim of North Korean espionage or something Snowden did.

Just gonna mention that the Nintendo Switch originally shipped with a vulnerable chip on board which ultimately lead to custom code being executable.

The chip doesn't seem to be a rebaged old chip, from what I found it is Helio P35, which was designed before 2019. Mediatek probably just didn't bother with updating the design. I don't really think there was a malicious intent, and the Rabbit company simply cheaped out. The chip is/recently was very common in low budget devices (below 80$ on many brands). I guess the moral of the story is not to buy devices with pre-2019 chips designed by mediatek

there goes 10:30 mins of my life i’ll never get back

Many tech companies will obfuscate what key components they use by e.g. laser etching the markings away. Good luck guessing the part number by a standard package format.

3:00 it connects to _chinese_ servers but its encrypted so thats "additional points for privacy"? you have to be joking

How nice it is for a Lithuanian to see that your employee is from Lithuania

For thos wondering what vulnerability it is, its BROM mode

why does alot of this look edited and fake?

Oh no. Root access on a device I own. What a nightmare.

The key to security on this device is that it’s really expensive and doesn’t do anything. That’s a feature, not a bug.

Nice my mum's phone is bricked and the boot loader is locked. I might try to use this exploit to finally fix it

"This was discovered in 2019. Some of you were not even born then." How many 6 year olds do you think watch your videos? Like *really* watch them?

Most people don't realize that this is such a dangerous layered issue. It starts with hardware, but the entire stack needs to move away from being closed or "hidden". We need open source for everything, to be auditable, secure, and transparent. Automation is going to shock the system in the coming years.

Do some more like this - deep dives into exploits are my favorite, even the old ones.

Just the product design alone was a joke. Also, who would want to keep track of that and their smartphone. The day it came out my first thought was that I would be seeing them in thrift shops within a year.

Looks like the "debugging port" is a UART. Note the RX and TX pins.

Amazing video!! Please make more videos like this, as a programmer and cybersecurity enthusiast, I really enjoy this style of content, keep it up!!

most advanced ai newscaster i’ve seen from y’all yet ;)

LLL covered pretty much the same vulnerability, but with more information about the actual vulnerability

i think the only reason they went with that specific chip, was it was dirt cheap, because of said vulnerabilities, and the creators of the R1 didnt do their research beforehand, OR if they did, and knew of the vuln, that is treading dangerously close to criminal behaviour, willingly using a bad chip, for a device like that..

Not the Monty Python Rabbit catching strays 😭😭🤣🤣🤣🤣

I could see Rabbit having cheaped out in their source for the CPU and having gotten an inofficial rebadged CPU which used old CPUs.

Good job bringing out the risk of buying a second hand Rabbit. But that applies to almost every device running these processors.

The obvious next step is to start connecting random phones, tablets, TVs, routers, smart speakers, robot vacuums, etc. to a laptop and run this exploit. If Mediatek is still selling vulnerable chips and Rabbit bought them, there's no way other random companies haven't also.

Omg!! we can read and write the firmware of a device we own, how craaZzzyyy. That just shows that there should be a foolproof way to do a factory reset on a device, not that we should lock down every piece of equipment...

This device would be a practise tool for learning hacking. Or to practise modding devices.

I'll even go as far as to say this channel is view farming. Too many views and likes, not enough comments.

Summary: Mediatek chip in Rabbit r1 has a vunrability since 2019

Never let someone else hookup a USB to your device lmao

You couldn't find a lump of coal in a coal sack, but hey you can say you did if you were handed one.

I was waiting for you to have a point. You didn't. This video is so pointless, of course if you have physical access to a device you can reprogram it and have access to it. That's why the mediatek "vulnerability" isn't considered really notable either. You trying to somehow gas yourself up as if this was some big revelation makes your whole channel look bad

Fantastic video. Thanks

I'm sure this is a cliffhanger for all the people watching who were born after 2019.

If I own one of these, I'm more than a regular user, and should be allowed to access if fully without hacking it.

Can someone tell me what is the stuff that we shouldn't be allowed to do on R1 that the debugging makes possible?

So does this need hardwire or is it able to be hacked wirelessly

Wow. This coupled with the fact that all your use is logged to the device, including past GPS history, and the fact that the rabbit hole uses VNC to have you enter your credentials to sites on computers you don't control instead of using oauth tokens client side is a huge liability for consumers. What were they thinking?!

Hopefully, your researchers are not in Kaliningrad as the map suggests.😂

cant wair for the r1 to be used in ddos attakcs

was **not** expecting this bro

This is a big, and I mean a BIG Security risk. If rabbit does not fix this bug soon. It would probably be discontinued. (Correct me if I am wrong.)

I didn’t realise Christian Bale was a tech head

Never trusted a MediaTek chipset in my life :D

love to see more, thx for sharing

Alternative video title: a rabbit hole of cyber exploits

Suggestion for research. Just bought the cheap TP-Link TAPO C220, and found that it requires internet AND inter-client (phone:app and camera) communication. A huge red-flag.

6:16 They could use a CPU from a different manufacturer like Qualcomm.

"We" = your research team..

Its insane that we still give views to a company that is legit a scam ........

I am curious about how secure are gaming consoles. That could be an interesting device to hack into

Props for the Monty Python reference.

Good thing I never purchased one

so is it possible Rabbit bought the chips from anywhere but Meditak? The chip etching is scratched off pretty much. Also, I can't find anything on the Mediatek R1 that it showed up as. I would highly recommend going to Mediatek themselves and asking about the chip name it came up as. It's very possible that the chip isn't what Rabbit claimed it to be. My guess is that it's a custom chip and Rabbit went with the older architecture that MediaTek used with the vulnerability.

7:55 'where money?' wtf come on guys LOL

IS ANY1 REALLY USING THAT TRASH? LMAO

Interesting...🤔

I bought one second hand to hackc it myself, no one puts rootkits in R1 devices. People on Leboncoin where I bought it can barely read and write in their native french language for the most part, no one knows that fastboot is, probably don't even know how to install the proper mediatek drivers to even talk to the thing and exploit it. You expect them to build custom software to potentially hack a single person ? On a device that doesn't even have any apps with sensitive data ? Nah the exploit is just what we all needed to get doom to run on this orange box

It's ORANGE! Orange for: FREEMASON! That says it all right there. 2 billion colors and they chose the big O.

I don't need to open rabbit to know it's crap, all you need to know is the founder previously had a get rich quick scheme involving a videogame and nfts.

Did you expect anything less for a Chinese product?

we got steve jobs talking rabbit r1

what have to say Nothing brand?

Grace period allows the Zero day Market...

What is Rabbit R1?

I discovered all this in June. Along with everyone else in the Rabbitude discord.

good video, thanks!

I'm kinda shocked Rabbit is still in business. Horrible product.

It's alright no one even bought that physical android app :D

Greatings from Serbia 😊

Happy for more of that!

you cracked the fortune cookie and found the following message" "Clarity is better than cleverness"

You know what, 1. I don't care, and 2. So what? Most major "hacks" and "leaks" are not the end users fault, it's the corporate companies fault, and the end user is left holding the bag. Everything is hackable, Just accept that and move on.

I mean the mediatek Brom mode vulnerability is just what computers should have by default a fucking flashing interface I want my bootloader unlocked, so that I can do fun admin stuff on my device this includes my 700€ Sony phone, my computer... Devices that respect you like OnePlus, Nothing, Sony just let you unlock the bootloader officially I'm quite happy that it's there, now my R1 runs proper android and it looks hilarious

2:48 And the amount of bot activity in comment section indicates that it is what the Rabbit is meant for.. and you should not buy it to serve CCP 😂 Message to the channel: Guys you explained everything in detail but, please be aware of bots when you are touching some countries!

does he have any original content

Can you please make a video a install Minecraft to it for the Rabbit r1

FitMC is that you?

isn't this a way people use to root their phone. the hack you are talking about? as in is this not just one of the exploits how people add their own rom to a device?

ooh nice Leon reference

you make good explanations more than AI generated one

Working as intended

They could just remove the debug points.

5:09 Gary Oldman in Leon