DJI just updated their DJI go 4 app to flash a warning about new rules once you start the app. One way of looking at it is as a clever way to let all drone owners about upcoming regulation changes. Another perspective suggests that DJI is trying to fight the new regulations by inciting fear of monetary losses. Indeed when you go deeper into the message you’ll find that DJI suggests that you comment on a remote ID proposal that has vast implications for DJI as a drone manufacturer.
Well, I guess now we know why the US Army pulled all of its DJI products from service. DJI have removed the JPush plugin from the DJI Go and DJI Go 4 apps. It turns out that it had been collecting user data without its knowledge. Not without the user’s knowledge, without DJI’s knowledge. DJI blame the third party developer who created the JPush plugin.
The Verge reports that JPush wouldn’t have needed to collect a lot of data to do its job. But DJI say the app actually collected personal information, including a list of apps installed on the user’s Android device. In addition to this update, they’ve also announced a bug bounty programme rewarding up to $30,000 for those who can find exploits in their systems.