All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Critical BLE Vulnerability Allows Root-Level Takeover of Unitree Robots

By

vmayoral

8mo ago· 6 min readenNews
Bagel score 100 of 100
100/100
Golden Brown
Bagelometer

An everything bagel for the brain. Substantive, layered, well-seasoned.

Score100TypenewsSentimentnegative

Summary

Security researchers disclosed a critical Bluetooth Low Energy (BLE) vulnerability in Unitree robots (Go2, B2, G1, H1) on 20 September. The exploit allows root-level takeover via the Wi-Fi configuration interface, is wireless, and is wormable — meaning infected robots can automatically compromise nearby Unitree robots, potentially creating a robot botnet. The vulnerability raises serious concerns about robot security standards.

Key quotes

· 3 pulled
A critical vulnerability in the Bluetooth Low Energy (BLE) Wi-Fi configuration interface used by several different Unitree robots can result in a root-level takeover by an attacker
Because the vulnerability is wireless, and the resulting access to the affected platform is complete, the vulnerability becomes wormable
An infected robot can simply scan for other Unitree robots in BLE range and automatically compromise them, creating a robot botnet
Snippet from the RSS feed
Can your robot be hacked? A new vulnerability in Unitree robots could turn them into a botnet army. Are we taking robot security seriously enough?

You might also wanna read

CISA Adds Palo Alto Networks PAN-OS Authentication Bypass Vulnerability to Known Exploited Vulnerabilities Catalog

CISA has added a new vulnerability (CVE-2026-0257) to its Known Exploited Vulnerabilities (KEV) Catalog, affecting Palo Alto Networks PAN-OS

cisa.gov·2h ago

CISA Adds Palo Alto Networks PAN-OS Authentication Bypass Vulnerability to Known Exploited Vulnerabilities Catalog

CISA has added a new vulnerability (CVE-2026-0257) to its Known Exploited Vulnerabilities (KEV) Catalog, affecting Palo Alto Networks PAN-OS

cisa.gov·2h ago

Microsoft warns of crypto mining malware disguised as fake downloads of popular PC utilities

Microsoft's Windows Defender team has uncovered a cryptocurrency mining campaign targeting PC enthusiasts. Scammers are manipulating search

techspot.com·10h ago

Google reports first evidence of hackers using AI to develop zero-day security exploit

Google has reported evidence of hackers using AI to develop a zero-day security vulnerability, marking the first time the company has observ

politico.com·11h ago

FBI warns healthcare sector about Silent Ransom Group impersonating IT support staff

The FBI has issued an alert about the Silent Ransom Group (also known as Luna Moth, Chatty Spider, and UNC3753), a cyber threat group active

aha.org·11h ago

Microsoft faces cybersecurity community backlash over Digital Crimes Unit threats against exploit disclosures

Microsoft is facing backlash from the cybersecurity community after threatening to use its 'Digital Crimes Unit' against security researcher

windowscentral.com·17h ago