>Although they were quick to remove the download link for the new firmware

A bad/misguided attempt to stop people from finding vulnerabilities?

Almost certainly, considering 'you must “Use mobile application to upgrade device”)'.

Security through obscurity is pretty common in these types of devices, where they know they're insecure and don't want to get hamstrung by the press again. (And don't want to shell out for better programmers, of course...)

How can you not love this guy? Not only extremely smart, but his/her writing style makes it sound incredibly easy.