DARPA and the U.S. Air Force test AI “human-on-the-loop” F-16 autonomy—while critical OT cyber flaws surface
On July 16, 2026, DARPA and the U.S. Air Force conducted human-on-the-loop in-air testing of AI-capable F-16s modified with the VENOM autonomy kit, as part of DARPA’s Artificial Intelligence Reinforcements program. The reporting frames the effort as an in-flight validation step, implying the autonomy layer is being evaluated under real operational dynamics rather than only in ground simulations. In parallel, multiple U.S. government-linked cybersecurity advisories published the same day highlighted vulnerabilities across industrial control and mission-critical systems. These include Rockwell Automation CompactLogix/ControlLogix/GuardLogix families, Rockwell Automation Flex 5000 adapters, Siemens SICAM 8 products, NASA Core Flight System (cFS) Health & Safety applications, SALTO ProAccess Space, and several Rockwell/automation suites, with impacts ranging from denial-of-service to privilege escalation and authenticated script injection. Strategically, the cluster points to a dual-track competition: accelerating AI-enabled autonomy for airpower while simultaneously exposing the fragility of the digital backbone that supports defense, aerospace, and critical infrastructure. The VENOM testing suggests the U.S. is trying to keep decision authority bounded (“human-on-the-loop”) while still harvesting speed and situational advantages from onboard AI—an approach that can reduce reaction times and improve mission survivability. Meanwhile, the OT and access-control vulnerabilities underscore how attackers could disrupt or manipulate systems that are often assumed to be “behind the firewall,” including industrial networks and facility access partitions. The beneficiaries are likely U.S. defense modernization efforts and vendors that can patch quickly, while the losers are operators with legacy deployments, slow patch cycles, and weak segmentation—especially in sectors that support defense supply chains. Market and economic implications are most visible in industrial automation and cybersecurity risk pricing. Rockwell Automation and Siemens-linked OT ecosystems face heightened demand for compensating controls, incident response, and patch management, which can lift near-term spend in industrial cybersecurity services and vulnerability management tooling. Denial-of-service and privilege-escalation risks can also increase downtime insurance claims and raise the cost of maintaining uptime for manufacturing, energy, and logistics operators. While the articles do not provide direct price moves, the direction of risk is clear: equities tied to industrial automation and OT security may see volatility around disclosure-driven remediation cycles, and enterprise buyers may accelerate budgets for network segmentation, asset inventory, and secure remote access. What to watch next is the operationalization of VENOM-like autonomy into broader flight test campaigns and the emergence of follow-on requirements for human oversight, safety constraints, and data governance. For the cyber side, the key indicators are patch availability timelines, confirmed exploitability in the wild, and whether advisories translate into active scanning or intrusion attempts against exposed OT assets. Organizations running affected Rockwell, Siemens, NASA cFS components, and SALTO ProAccess deployments should track vendor advisories, firmware/software version coverage, and the feasibility of compensating controls such as network isolation and strict authentication hardening. Trigger points include any credible reports of exploitation leading to sustained outages, privilege misuse, or unauthorized access partition breaches, which would likely force faster remediation and potentially widen the scope of regulatory scrutiny across critical infrastructure operators.
Geopolitical Implications
- 01
The U.S. is pursuing a competitive edge in AI-enabled airpower while maintaining human control, reflecting a broader strategy to compress decision cycles without surrendering authority.
- 02
Cyber exposure in OT and mission-critical systems can undermine resilience of defense-adjacent supply chains and critical infrastructure, increasing strategic leverage for adversaries.
- 03
Disclosure-driven remediation cycles may widen the gap between well-resourced operators and legacy-heavy networks, shaping national and sectoral readiness.
Key Signals
- —Next phases of VENOM-related flight testing: autonomy scope, safety constraints, and data/telemetry handling requirements.
- —Vendor patch release timelines and whether CISA advisories are updated with exploitability or known-activity notes.
- —Observable scanning or intrusion attempts targeting affected Rockwell/Siemens/NASA cFS/SALTO deployments.
- —Evidence of downtime or unauthorized access partition breaches in facilities using SALTO ProAccess Space.
Topics & Keywords
Related Intelligence
Full Access
Unlock Full Intelligence Access
Real-time alerts, detailed threat assessments, entity networks, market correlations, AI briefings, and interactive maps.