OpenClaw is a major leap forward for AI—and a cybersecurity nightmare

Security researchers say thousands of exposed OpenClaw gateways could let hackers read private files, emails, and messages.

Initial access hackers switch to Tsundere Bot for ransomware attacks

A prolific initial access broker tracked as TA584 has been observed using the Tsundere Bot alongside XWorm remote access ...
Hackaday

access control

There were some that doubted the day would ever come, but we’re happy to report that the ambitious self-destructing USB drive that security researcher [Walker] has been working on for the last 6+ ...
Microsoft

Microsoft SDL: Evolving security practices for an AI-powered world

Discover Microsoft’s holistic SDL for AI combining policy, research, and enablement to help leaders secure AI systems against ...

What Is OpenClaw And Why It Matters For Crypto’s Next Phase?

OpenClaw lets AI agents act on your behalf. With 100K GitHub stars in days and thousands of agents forming communities, here ...
SecurityWeek

Vulnerability Allows Hackers to Hijack OpenClaw AI Assistant

OpenClaw patched a critical vulnerability that could be exploited to hijack the increasingly popular AI assistant.
Microsoft

Case study: Securing AI application supply chains

This case study examines how vulnerabilities in AI frameworks and orchestration layers can introduce supply chain risk. Using ...

OpenClaw (formerly Clawdbot) can manage your entire digital life, but it might leak your credentials

OpenClaw, previously named Moltbot and before that, Clawdbot, is an open-source AI agent that runs locally on users' machines and autonomously interacts with websites, reads and ...
WinBuzzer

OpenClaw Security Fallout: 341 Malicious Skills and Enabling One-Click Remote Code Execution

OpenClaw has exposed users to critical security vulnerabilities, including CVE-2026-25253 enabling one-click remote code ...