Researchers found that they could compromise DJI’s single sign-on tokens, similar to the issue behind Facebook’s massive breach this September.