276
submitted 1 year ago* (last edited 1 year ago) by dmtalon@infosec.pub to c/homeassistant@lemmy.world
you are viewing a single comment's thread
view the rest of the comments
[-] MrSqueezles@lemm.ee 7 points 1 year ago

As someone who maintained an API, 80% to 90% of my time was discovering that hackers were attempting an exploit, blocking it, adding monitoring, building abuse prevention. After we shut our API off, we could turn services back on, especially free services that we only took away because hackers.

Not to mention the support volume. More than half of our support calls were, "Why did you suspend my account? I'm a poor old grandpa. I want to appeal." Okay, yep we looked into activity and you sent 50000 requests in less than a minute and that's all you ever did with this account. Did you know hackers lie and will spend hours getting tech support? You go to school to be an engineer to build cool stuff and instead field bullshit support requests all day from people trying to destroy the thing you want to build so they can maybe make thirty bucks and cost you tens of thousands. It sucked the life out of me and turned me eternally cynical.

[-] ScottE@lemm.ee 5 points 1 year ago

This isn't an issue with hackers though - this is people legitimately using the devices that they paid for with Home Assistant and other automation systems.

load more comments (1 replies)
this post was submitted on 07 Nov 2023
276 points (99.6% liked)

homeassistant

11921 readers
2 users here now

Home Assistant is open source home automation that puts local control and privacy first. Powered by a worldwide community of tinkerers and DIY enthusiasts. Perfect to run on a Raspberry Pi or a local server. Available for free at home-assistant.io

founded 1 year ago
MODERATORS