Paper page - Cybersecurity AI: Humanoid Robots as Attack Vectors

Source: https://huggingface.co/papers/2509.14139 Published on Sep 17, 2025

Abstract

The Unitree G1 humanoid robot is vulnerable to BLE provisioning protocol exploits, exfiltrates sensor data, and can be repurposed for active cyber operations, highlighting the need for improved security standards in commercial robotics.

We present a systematic security assessment of the Unitree G1 humanoid showing it operates simultaneously as a covert surveillance node and can be purposed as an active cyber operations platform. Initial access can be achieved by exploiting theBLE provisioning protocolwhich contains a criticalcommand injection vulnerabilityallowing root access via malformedWi-Fi credentials, exploitable usinghardcoded AES keysshared across all units. Partial reverse engineering of Unitree’s proprietaryFMX encryptionreveal astatic Blowfish-ECB layerand a predictableLCG mask-enabled inspection of the system’s otherwise sophisticated security architecture, the most mature we have observed in commercial robotics. Two empirical case studies expose the critical risk of this humanoid robot: (a) the robot functions as a trojan horse, continuously exfiltrating multi-modal sensor and service-state telemetry to 43.175.228.18:17883 and 43.175.229.18:17883 every 300 seconds without operator notice, creating violations ofGDPRArticles 6 and 13; (b) a residentCybersecurity AI(CAI) agent can pivot from reconnaissance to offensive preparation against any target, such as the manufacturer’scloud control plane, demonstrating escalation from passive monitoring to active counter-operations. These findings argue foradaptive CAI-powered defensesas humanoids move into critical infrastructure, contributing the empirical evidence needed to shape future security standards forphysical-cyber convergencesystems.

View arXiv pageView PDFProject pageGitHub8.69kautoAdd to collection

Get this paper in your agent:

hf papers read 2509\.14139

Don’t have the latest CLI?curl \-LsSf https://hf\.co/cli/install\.sh \| bash

Models citing this paper0

No model linking this paper

Cite arxiv.org/abs/2509.14139 in a model README.md to link it from this page.

Datasets citing this paper0

No dataset linking this paper

Cite arxiv.org/abs/2509.14139 in a dataset README.md to link it from this page.

Spaces citing this paper0

No Space linking this paper

Cite arxiv.org/abs/2509.14139 in a Space README.md to link it from this page.

Collections including this paper0

No Collection including this paper

Add this paper to acollectionto link it from this page.