Researcher probes adversarial vulnerabilities in humanoid VLAs

// 45d agoNEWS

Researcher probes adversarial vulnerabilities in humanoid VLAs

A master's student is initiating research into red-teaming Vision-Language-Action (VLA) models for humanoid robots, specifically focusing on how adversarial attacks can compromise autonomous decision-making. Utilizing NVIDIA's Jetson Thor hardware and the Cosmos Reason 2 vision-language model, the project aims to identify cross-modal vulnerabilities where textual or visual perturbations translate into dangerous physical motor actions.

// ANALYSIS

The transition from digital LLMs to embodied VLA models creates a high-stakes "safety-security nexus" where perception errors lead directly to hardware destruction.

–Bipedal humanoids require continuous balance control, making them uniquely susceptible to "action-freezing" attacks that can cause catastrophic falls.
–NVIDIA's Cosmos Reason 2 family, with its explicit chain-of-thought reasoning, provides a new debugging surface for researchers to trace how adversarial noise corrupts multi-step physical planning.
–Existing research on VLA models like RT-2 and OpenVLA has already demonstrated that simple adversarial patches can reduce task success rates to zero, a major hurdle for safe real-world deployment.
–The research highlights a critical gap in model alignment: current safety guardrails are largely textual and fail to account for the spatio-temporal dynamics required for safe human-robot interaction.

// TAGS

roboticsvlaadversarial-attacksecurityphysical-aijetson-thorcosmos-reason-2humanoid-vla-security

DISCOVERED

45d ago

2026-04-19

PUBLISHED

45d ago

2026-04-18

RELEVANCE

8/ 10

AUTHOR

spacegeekOps

// KEEP READING

More AI developer news from the feed

EXPLORE FULL FEED

UPDATE51m ago

OpenAI introduces "Sites" on Codex, a feature allowing users to instantly generate and host live web apps and dashboards from natural language prompts.

OpenAI has launched a preview of "Sites" for its Codex AI agent platform, enabling users to build, deploy, and host interactive web applications and dashboards instantly from a text prompt. Currently available for ChatGPT Business and Enterprise workspaces, the tool bypasses traditional website builders by hosting the applications on live URLs that can be shared with teams. Along with Sites, OpenAI introduced six role-specific plugins integrating 62 apps and 110 skills (such as Salesforce, HubSpot, Snowflake, and Figma) and added annotation capabilities across documents, spreadsheets, and slides.

NEWS1h ago

OpenAI sunsets legacy Codex models

OpenAI has sunset its GPT-5.2-Codex and GPT-5.3-Codex models from the Codex agent platform, shifting the default to newer models like GPT-5.5. The removal has sparked frustration among developers who valued the deprecated models' coding precision and efficiency.

UPDATE1h ago

Factory deploys user-requested coding agent features

A user tweet commends Factory's rapid feature deployment for its autonomous coding agents, known as Droids, noting a requested feature was live within days. Factory is an agent-native software engineering platform that builds specialized AI Droids to automate development tasks like code reviews, refactoring, and migrations.