First Ever / AI

A new AI framework can autonomously find, exploit, and then patch security holes in the physical microcontrollers that run industrial factories.

The Takeaway

Most AI hacking focuses on websites or software, but this system targets bare-metal hardware. It can discover a vulnerability in an industrial controller, write an exploit for it, and then generate a permanent patch to fix it. All of this happens without any human clicking a button, marking the first time AI has managed the entire security lifecycle for physical infrastructure. This closed-loop capability is a game-changer for defending or attacking the power grid and water systems. We are entering an era where hardware security happens at machine speed.

By SeriesFusion Editorial Board · May 5, 2026

Original Paper

APIOT: Autonomous Vulnerability Management Across Bare-Metal Industrial OT Networks

Adel ElZemity, Budi Arief, Shujun Li, Calvin Brierley, Yichao Wang, Yuxiang Huang, James Pope, Haoxiang Li, George Oikonomou

arXiv · 2605.02346

From the abstract

Bare-metal operational technology (OT) devices -- especially the microcontrollers running Modbus/TCP and CoAP at the base of industrial control systems -- have remained outside the reach of autonomous security attacks. Prior autonomous pentesting studies target Linux and web systems, whose shells and filesystems are familiar to LLM agents. Bare-metal OT has neither, so agents must reason directly over protocol fields and parser semantics. This requires new action-space designs and runtime contro

Read the original paper →

← Back to today's papers