A researcher documented SSH enabled by default and unencrypted firmware on the Rode Rodecaster Duo audio interface. Firmware updates are unencrypted gzipped tarballs with no signature verification, and hardcoded SSH keys are present in the device. The findings illustrate weak security practices in consumer audio hardware.
Products
My audio interface has SSH enabled by default
Rode ships its Rodecaster Duo audio interface with SSH enabled by default and unencrypted, unsigned firmware updates using hardcoded credentials, making the device trivially compromisable.
Friday, April 24, 2026 12:00 PM UTC2 MIN READSOURCE: Hacker NewsBY sys://pipeline
Tags
products