Algo v0.31
Substrate
technology

Yarbo to Eliminate Default Remote Access on Robot Lawn Mowers, Make Feature User Opt-In

Yarbo has reversed course on a remote access vulnerability in its robot lawn mowers following security research that allowed remote hijacking. Cofounder Kenneth Kohlmann told The Verge the company will eliminate the default backdoor and let customers decide whether to install it. Firmware updates have begun rolling out with unique root passwords.

The Verge
1 source·May 12, 12:15 PM(17 days ago)·1m read
Yarbo to Eliminate Default Remote Access on Robot Lawn Mowers, Make Feature User Opt-InThe Verge
Audio version
Tap play to generate a narrated version.
Developing·Limited corroboration so far. This page will refresh as more sources emerge.

Yarbo plans to completely remove the remote backdoor access from its robot lawn mower and will let customers decide whether the remote access feature gets installed. The company had promised on Friday that it would tackle many security issues head-on after security researcher Andreas Makris hijacked Yarbo robots from the other side of the globe.

The vulnerabilities exposed email addresses and GPS locations.

On Saturday, spokespeople Showan Hou and Maggie Zhou told The Verge that completely removing remote diagnostic capability would reduce Yarbo’s ability to help customers resolve safety, connectivity, and service issues quickly, especially in cases where physical inspection is not practical.

By Monday the company had shifted position. Kenneth Kohlmann, a cofounder of Yarbo, called Sean Hollister from the airport.

“In the future there should be no remote backdoor unless the user decides to opt in,” Kohlmann said. Removing the tunnel will take some time. The required files to install a new version may still technically be loaded on each robot’s internal storage.

“It would most likely be a setup script that sits on the machine and doesn’t do anything unless the user triggers it,” Kohlmann said. ” Users would likely first try uploading a log file to Yarbo tech support before opting for remote access. Firmware updates have already rolled out to the first 1,000 machines.

Firmware updates are coming to additional waves of robots. Every device should soon have a unique root password that Yarbo won’t provide to end users. The company is now in touch with Makris, and it is possible the security researcher will be able to validate the changes.

The article detailing the developments was published on May 11, 2026 at 10:40 PM UTC. The Verge reported that the company behind the robot lawn mower that ran the reporter over has changed its tune on the persistent backdoor that could have let bad actors reprogram the robot over the internet.

Key Facts

Yarbo will remove default remote backdoor access from its ro
Customers must opt in to install the feature; previously the company planned to keep a protected backdoor for support
Andreas Makris remotely hijacked Yarbo robots
The demonstration exposed email addresses and GPS locations of devices
Firmware updates have reached the first 1,000 machines
Additional waves are forthcoming; each device will receive a unique root password that Yarbo will not share with users
cybersecurityconsumer-electronicsroboticssoftware-updates

Story Timeline

5 events
  1. 2026-05-11 22:40 UTC

    The Verge publishes article on Yarbo's policy reversal

    1 sourceThe Verge
  2. 2026-05-10

    Kenneth Kohlmann calls Sean Hollister from the airport to announce opt-in backdoor plan

    1 sourceThe Verge
  3. 2026-05-09

    Spokespeople Showan Hou and Maggie Zhou state that removing remote diagnostic capability would hinder customer support

    1 sourceThe Verge
  4. 2026-05-08

    Yarbo promises to tackle many security issues head-on

    1 sourceYarbo
  5. 2026-05-11

    Firmware updates rolled out to first 1,000 machines with unique root passwords planned

    1 sourceThe Verge

Potential Impact

  1. 01

    Robot owners gain control over remote diagnostic access, potentially improving privacy and security

  2. 02

    Yarbo's customer support may face delays in remote troubleshooting for opt-out users

  3. 03

    Independent validation by security researcher Andreas Makris could increase confidence in the fixes

Transparency Panel

Sources cross-referenced1
Confidence score75%
Synthesized bySubstrate AI
Word count317 words
PublishedMay 12, 2026, 12:15 PM
Bias signals removed2 across 1 outlet
Signal Breakdown
Loaded 2
Original Sources
The VergeYarbo says it will remove the intentional backdoor from its robot lawn mower

Related Stories

World Urban Forum 2026 Draws 57,000 Participants from 176 CountriesEuronews
technology4 hrs agoDeveloping

World Urban Forum 2026 Draws 57,000 Participants from 176 Countries

The 13th World Urban Forum concluded with discussions on housing, climate resilience and urban governance. Organisers reported that the sessions informed future strategic priorities.

Euronews
1 source
Trump Mobile website still lists T1 phone as American-madetheverge.com
technology4 hrs agoDeveloping

Trump Mobile website still lists T1 phone as American-made

The product page for the T1 phone continues to describe the device as American-made. The Verge reported that the site may conflict with FTC advertising rules. The phone was announced in June 2025.

The Verge
1 source
EU Discusses Readiness for Artificial Intelligence ChangesFrance 24
ai4 hrs agoDeveloping

EU Discusses Readiness for Artificial Intelligence Changes

A France 24 program examined whether European Union policies can address the effects of artificial intelligence. The discussion covered potential impacts across daily life and economic sectors.

France 24
1 source