80,000 drone IDs exposed in DJI Aeroscope data leak

In a data breach, a DJI Aeroscope database with information from hundreds of airspace monitoring devices made by the Chinese drone maker was made public. This database contained more than 80,000 drone IDs.

The Cybernews research team has discovered an unencrypted database containing over 90 million drone-monitoring records created by systems.

The Federal Aviation Administration (FAA) came up with , which is equivalent to license plates for drones, to identify the owners of all drones if they are flying in a dangerous way or in areas where they are not permitted to fly.

Remote ID will offer information about drones in flight, including the drone’s identification, position, and altitude, as well as the pilot’s location.

In 2017, DJI introduced the DJI AeroScope drone detection system so that drones could be identified while they were in the air. This was done in preparation for the FAA’s Remote ID for Drones program.

“From temporary events like festivals, government events, and major sporting events to fixed sites like airports, prisons, and nuclear power plants, AeroScope is a simple, robust technical solution to provide immediate information about DJI drones in the area – from their flight paths to their pilot locations to their serial numbers,” DJI said.

80,000 Drone Ids Exposed In Dji Aeroscope Data Leak Dji Drones Transmit Location Data Unencrypted; 'Open Source Aeroscope' In The Making

The company’s drone-monitoring equipment, DJI AeroScope, can “identify the vast majority of popular drones on the market today.”

DJI Aeroscope data leak

The Cybernews Research Team found an open database with more than 90 million records of drone monitoring from 66 different DJI AeroScope devices, most of which were in the (53). Some were in Qatar (six), while others were in , , and .

The logs contained the drone’s position, model, and serial number, as well as the pilot’s position and home location (usually the point of take-off). The dataset included no personally identifiable information (PII). In all, Cybernews discovered approximately 80,000 distinct drone IDs in the instance.

DJI informed Cybernews that a 54.5GB dataset identified by our researchers on July 11 and housed by AWS in the United States is not their property, implying that the data was most likely disclosed by one of DJI’s customers while utilizing DJI AeroScope to monitor the airspace for drones.

Because the server was hosted on AWS and had no domains allocated to it, our researchers could not trace out the owner, even with the assistance of VirusTotal, Centralops Domain dossier, nmap, and dig, among other important open-source intelligence (OSINT) tools.

Cybernews told DJI and AWS about the leaking database and asked them to fix it as soon as possible so that threat actors won’t be able to get to the information. AWS said that it has forwarded the “security concern to the specific customer for their awareness and potential mitigation.”

Drone monitoring is distressing enough for folks who only take theirs out for a spin or to gather overhead video. Drone monitoring is unavoidable given security considerations, yet it is fair to expect surveillance data to be stored in secure systems.

According to Aras Nazarovas, a Cybernews analyst, this information is disturbing to enthusiasts since it may effectively expose the paths your drone takes.

“For people who launch drones in their backyards, there is an added danger of revealing their address, and the fact that they are rich enough to have a DJI drone, prices range from $300 to $13,700, and you can see which drone they have,” Nazarovas said.

YouTube video

Discover more from DroneXL.co

Subscribe to get the latest posts sent to your email.

MAKE YOUR VOICE HEARD

Proposed legislation threatens your ability to use drones for fun, work, and safety. The Drone Advocacy Alliance is fighting to ensure your voice is heard in these critical policy discussions.Join us and tell your elected officials to protect your right to fly.

Drone Advocacy Alliance
TAKE ACTION NOW
Follow us on Google News!

Get your Part 107 Certificate

Pass the Part 107 test and take to the skies with the Pilot Institute. We have helped thousands of people become airplane and commercial drone pilots. Our courses are designed by industry experts to help you pass FAA tests and achieve your dreams.

pilot institute dronexl

Copyright © DroneXL.co 2025. All rights reserved. The content, images, and intellectual property on this website are protected by copyright law. Reproduction or distribution of any material without prior written permission from DroneXL.co is strictly prohibited. For permissions and inquiries, please contact us first. DroneXL.co is a proud partner of the Drone Advocacy Alliance. Be sure to check out DroneXL's sister site, EVXL.co, for all the latest news on electric vehicles.

FTC: DroneXL.co is an Amazon Associate and uses affiliate links that can generate income from qualifying purchases. We do not sell, share, rent out, or spam your email.

Haye Kesteloo
Haye Kesteloo

Haye Kesteloo is a leading drone industry expert and Editor in Chief of DroneXL.co and EVXL.co, where he covers drone technology, industry developments, and electric mobility trends. With over nine years of specialized coverage in unmanned aerial systems, his insights have been featured in The New York Times, The Financial Times, and cited by The Brookings Institute, Foreign Policy, Politico and others.

Before founding DroneXL.co, Kesteloo built his expertise at DroneDJ. He currently co-hosts the PiXL Drone Show on YouTube and podcast platforms, sharing industry insights with a global audience. His reporting has influenced policy discussions and been referenced in federal documents, establishing him as an authoritative voice in drone technology and regulation. He can be reached at haye @ dronexl.co or @hayekesteloo.

Articles: 4563

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

en_USEnglish