Remote Access Backdoor Discovered in Chinese Robot Dog Unitree Go1
a year ago
- #Backdoor
- #Robotics
- #Cybersecurity
- Security researchers found a pre-installed remote access tunnel in Unitree Go1 robot dogs, allowing full remote control.
- The backdoor was discovered by Andreas Makris and Kevin Finisterre, who reverse-engineered the firmware.
- The tunnel connects to CloudSail, a Chinese remote access platform, enabling unauthorized access to devices.
- Researchers could list connected devices, access web interfaces, use cameras, and log in via SSH with default credentials.
- 1,919 unique Unitree Go1 units were found connected to CloudSail, including devices at MIT, Princeton, and other institutions.
- The tunnel auto-starts on boot and appears deliberately integrated, raising concerns about supply chain trust.
- Recommendations include isolating devices, rotating SSH credentials, and disabling the csclient tunnel service.