Security researchers have uncovered a pre-installed, undocumented remote access tunnel in 
Unitree Go1 robot dogs.
Each Unitree Go1 robot dog is shipped with a preconfigured tunnel client that initiates a connection to CloudSail — a remote access platform developed by Zhexi Technology, based in China.
“Anybody with access to the API key can freely access all robot dogs on the tunnel network, remotely control them, use the vision cameras to see through their eyes, or even hop on the RPI via SSH.”
“Most of the machines are located in China, but as expected some are outside of China, apart from some residential IPs, we were able to identify several University IPs and some corporate networks from around the world.”
More than a dozen universities from the US, Canada, Germany, New Zealand, Australia, and Japan have experimented with Unitree Go1 robot dogs:
USA: MIT, Princeton University, University of Massachusetts Amherst, Carnegie Mellon University
Canada: University of Waterloo
Germany: Hochschule Coburg
New Zealand: University of Otago
Australia: UNSW Sydney, Deakin University
Japan: Shinshu University
The discovery raises serious concerns about supply chain trust, especially as these robots are widely used in academic, corporate, and even defense-related environments.
cyberinsider.com/remote-access-
Unitree Go1 robot dogs.
Each Unitree Go1 robot dog is shipped with a preconfigured tunnel client that initiates a connection to CloudSail — a remote access platform developed by Zhexi Technology, based in China.
“Anybody with access to the API key can freely access all robot dogs on the tunnel network, remotely control them, use the vision cameras to see through their eyes, or even hop on the RPI via SSH.”
“Most of the machines are located in China, but as expected some are outside of China, apart from some residential IPs, we were able to identify several University IPs and some corporate networks from around the world.”
More than a dozen universities from the US, Canada, Germany, New Zealand, Australia, and Japan have experimented with Unitree Go1 robot dogs:
USA: MIT, Princeton University, University of Massachusetts Amherst, Carnegie Mellon University
Canada: University of Waterloo
Germany: Hochschule Coburg
New Zealand: University of Otago
Australia: UNSW Sydney, Deakin University
Japan: Shinshu University
The discovery raises serious concerns about supply chain trust, especially as these robots are widely used in academic, corporate, and even defense-related environments.
cyberinsider.com/remote-access-