China-Demo zeigt, dass ein geflüsterter Befehl es Hackern ermöglichen könnte, Roboter zu ergreifen | Der kompromittierte Roboter nutzte drahtlose Signale mit kurzer Reichweite, um einen anderen Roboter zu infizieren, der offline und mit keinem Netzwerk verbunden war.

„In October, researchers revealed a Bluetooth flaw in Unitree robots that allows wireless root access, allowing a compromised machine to spread attacks to nearby robots and form a dangerous botnet.

In a controlled test, the team demonstrated that a commercially available humanoid robot could be hijacked with nothing more than spoken commands, exposing how voice-based interaction can serve as an attack vector rather than a safeguard.

The robot used in the experiment, a locally manufactured Unitree model costing roughly 100,000 yuan (about US$14,200), was running an embedded large-scale AI agent designed to manage interaction and autonomy. By exploiting a flaw in this system, the researchers bypassed safeguards and gained complete control of the machine while it was connected to the internet.

Once compromised, the robot became an isolated threat. Instead, it was repurposed as a conduit for further attacks. Using short-range wireless communication, the hijacked machine transmitted the exploit to another robot that was not connected to the network. Within minutes, this second robot was also taken over, demonstrating how a single breach could cascade through a group of machines.“