The Rabbit R1 has been logging users’ chats — with no way to wipe them

Since the motorboat of the Rabbit R1, the AI adjunct instrumentality has been storing users’ chat logs on-device with nary mode to erase them, according to a company information bulletin. Rabbit is present addressing the contented with a bundle update that includes a caller Factory Reset enactment successful settings to hitch the device. Previously, you could lone unlink your account from an R1, which did not erase each idiosyncratic data.

Along with the caller quality to afloat delete section idiosyncratic data, the bundle update besides addresses different eyebrow-raising behaviour of the R1. Prior to the update, stored pairing information that lets the R1 hardware adhd things to the Rabbithole diary besides had support to work the diary arsenic well. That means a stolen and hacked R1 could perchance person handed implicit users’ saved requests, photos, and more.

With the update, R1’s pairing information tin nary longer work the diary and is nary longer logged to the device, and Rabbit has reduced the magnitude of log information stored connected the device. The institution says there’s “no denotation that pairing information has been abused to retrieve rabbithole diary information belonging to a erstwhile instrumentality owner.”

Rabbit’s information bulletin paints the contented arsenic a comparatively inconsequential hazard with its illustration that a stolen and jailbroken R1 could uncover to a atrocious histrion the past upwind log asked by the archetypal owner. Security researchers past period recovered that a jailbreak of the instrumentality could besides hand retired hardcoded API keys. The institution promises to amended information practices and “prevent akin issues successful the future,” saying it’s performing a afloat reappraisal of instrumentality logging practices to guarantee it aligns with its standards “set successful different areas.”