Geekery: Bookending the COROS Security Debacle of 2025

March 3, 2026 by |COROS » Sports Technology News and Reviews|Comments (1)

YouTube video

Remember last summer when it was found that COROS had a slate of pretty severe security vulnerabilities? Initially, these vulnerabilities were ignored by COROS, but following a wee bit of newly applied internet assistance, the company quickly started to focus its efforts on actually fixing them. That’s a good thing, because the vulnerabilities were about as bad as you can get from a security standpoint (short of the watch combusting on your wrist if you missed the prescribed target during an interval).

Of course, you might also remember this was a vast effort affecting every one of their products, at numerous layers. This was not just one minor security bug, but at least half a dozen major architectural changes. Even for a major company, these types of changes wouldn’t be easy to make, nor fast to make. They impacted how the watches talked to the app, and also impacted every single device the company made.

In any event, the security researcher (Moritz Abrell) who found these vulnerabilities recently gave a talk at a security conference about the entire process (both technical and non-technical). This is pretty common in the security realm to do such a presentation, often once the dust settles (or sometimes, to create the dust storm if a company isn’t responding).

If you’re into computers, geekery, or just general security tidbits, the presentation is worth a watch, shared above. And of course, you can find more on his site here. And finally, COROS has a dedicated page too, outlining which watches were impacted and which firmware updates fixed which issues.

With that, thanks for reading!

FOUND THIS POST USEFUL? SUPPORT THE SITE!

Hopefully, you found this post useful. The website is really a labor of love, so please consider becoming a DC RAINMAKER Supporter. This gets you an ad-free experience, and access to our (mostly) bi-monthly behind-the-scenes video series of “Shed Talkin’”.

Support DCRainMaker - Shop on Amazon

Otherwise, perhaps consider using the below link if shopping on Amazon. As an Amazon Associate, I earn from qualifying purchases. It doesn’t cost you anything extra, but your purchases help support this website a lot. It could simply be buying toilet paper, or this pizza oven we use and love.

LinkedIn
Tags: ,

Related Posts

Post a Comment

Your email address will not be published. Required fields are marked.
If you would like a profile picture, simply register at Gravatar, which works here on DCR and across the web.

Click here to Subscribe without commenting

Add a picture

*

One Comment

  1. ReHMn
    March 3, 2026 at 11:48 am #1

    Look at the good side of the issue…
    Moritz, you can write an own firmware and spread it on mass events.
    While Garmin is sticked to watch faces, you can do and did real development here…

    Reply