Researchers have uncovered critical safety flaws with the Unitree G1 humanoid robotic, a machine that’s already being utilized in laboratories and a few police departments. They found that G1 can be utilized for covert surveillance and will probably launch a full-scale cyberattack on networks.
It sounds just like the stuff of science fiction nightmares, robots which can be secretly spying on you and may very well be managed by distant hackers. Nonetheless, the priority is actual, as most of these robots have gotten more and more frequent in properties, companies, crucial infrastructure and public areas.
When robots go rogue
In a brand new research obtainable on the arXiv preprint server, cybersecurity consultants from Alias Robotics describe how they carried out a digital audit on G1, reverse-engineering its inner software program and eavesdropping on its inner communications to determine crucial weaknesses.
Some of the critical flaws was in its Bluetooth Low Vitality (BLE) setup for connecting to Wi-Fi, a system utilized by many client robots. The research discovered that the encryption defending this course of was extremely weak and simply damaged. It depends on a single, secret digital key hidden inside each Unitree robotic, and easily encrypting the phrase “unitree” with a hardcoded key was sufficient to bypass safety and acquire management of the robotic’s total system. This implies a hacker may simply take it over and inject malicious instructions to crash it or make it assault different units.
Equally regarding was that G1 acts as a Malicious program, secretly and frequently sending information to servers in China each 5 minutes, with out customers figuring out about it. The group additionally confirmed the G1’s onboard pc may very well be repurposed for offensive operations. Moreover, the robotic’s customized encryption technique to guard its inner configuration recordsdata is basically flawed as a result of it makes use of a easy, static key that is the identical on each robotic. Subsequently, if a hacker have been capable of break the lock on one robotic, they may break the locks on all of them.
The research underscores the urgent want to reinforce the safety of humanoid robots, notably these employed in delicate environments. Because the researchers remark of their paper, this is able to contain a serious change in how we take into consideration safety. “Our findings point out that securing humanoid robots requires basic paradigm shifts towards adaptive cybersecurity AI frameworks able to addressing the distinctive challenges inherent in physical-cyber convergence methods.”
The researchers tried to warn Unitree in regards to the flaws, however after some preliminary communication, they stopped receiving responses from the corporate. So that they determined to go public with their findings.
Written for you by our writer Paul Arnold, edited by Gaby Clark, and fact-checked and reviewed by Robert Egan—this text is the results of cautious human work. We depend on readers such as you to maintain unbiased science journalism alive.
If this reporting issues to you,
please take into account a donation (particularly month-to-month).
You may get an ad-free account as a thank-you.
Extra data:
Víctor Mayoral-Vilches et al, Cybersecurity AI: Humanoid Robots as Assault Vectors, arXiv (2025). DOI: 10.48550/arxiv.2509.14139
© 2025 Science X Community
Quotation:
Safety researchers say G1 humanoid robots are secretly sending data to China and might simply be hacked (2025, September 30)
retrieved 5 October 2025
from https://techxplore.com/information/2025-09-g1-humanoid-robots-secretly-china.html
This doc is topic to copyright. Other than any honest dealing for the aim of personal research or analysis, no
half could also be reproduced with out the written permission. The content material is supplied for data functions solely.
