SIASUN(SZ:300024) Nan Fang Du Shi Bao·2025-10-25 08:13Core Insights - The incident at the "GEEKCON2025" highlighted significant security vulnerabilities in humanoid robots, as hackers demonstrated the ability to take control of a robot and use it to attack another robot, raising concerns about the safety of such technologies [1][3][4]. Group 1: Security Vulnerabilities - Two white hat hackers successfully hacked into a humanoid robot from Yushutech, demonstrating a critical security flaw that allowed them to execute attack codes remotely [1][4]. - The hackers exploited a logic flaw in the robot's built-in model, enabling them to gain arbitrary code execution permissions on the targeted robot [5]. - A previous report from security researchers indicated a high-risk vulnerability in Yushutech's low-power Bluetooth and Wi-Fi configuration interface, which could allow controlled robots to attack others within Bluetooth range [5]. Group 2: Industry Response and Awareness - Yushutech acknowledged the vulnerabilities and stated that they had already begun addressing these issues, with most repairs completed by the time of the event [5]. - The lack of focus on security in the robotics industry was noted, with many manufacturers prioritizing functionality over security measures, leading to widespread vulnerabilities [7]. - The chairman of the GEEKCON organizing committee emphasized the dual challenges of talent loss in cybersecurity and budget constraints faced by companies, which exacerbate security threats in emerging technologies [7]. Group 3: Recommendations for Manufacturers - Security experts recommend that manufacturers incorporate security checks during the development process to identify and eliminate superficial issues [8]. - Companies should consider building their own security systems or collaborating with external security teams to conduct offensive and defensive testing, which is essential for assessing the reliability of robotic products [8]. - The importance of security in robotics was underscored, with a call for the industry to recognize its value to build trust with users and establish themselves as reliable market leaders [7][8].