• 简体中文
  • English
  • 简体中文
  • English
Home / Technology / News detail

Raising lobsters requires a tight safety string! OpenClaw still carries risks after updates

HongKong.info
Technology
11 Mar 2026 01:44:36 PM
Recently, OpenClaw, an open-source AI intelligent agent commonly known as "lobster", has continued to gain popularity. With its powerful ability to independently perform complex tasks such as file management, email sending and receiving.

Under the current trend, security risks cannot be ignored - the Ministry of Industry and Information Technology has previously issued a special warning reminder. On the evening of March 10th, experts once again issued a statement reminding that even if the "lobster" intelligent agent has been updated to the latest version, it does not mean that security risks have been completely eliminated. "Lobster farming" needs to always tighten the string of security protection.

OpenClaw is called the "lobster" because of its red lobster shaped icon, formerly known as Clawdbot or Moltbot. It is an open-source AI agent with persistent memory and active execution capabilities, which can be privately deployed locally. By integrating communication software and large language models, it achieves autonomous implementation of user instructions. Its convenience and efficiency have quickly gained popularity, but it is precisely this characteristic of "autonomous decision-making and calling system resources" that has planted many security risks and become a key warning object for the Ministry of Industry and Information Technology and experts.

Raising lobsters requires a tight safety string! OpenClaw still carries risks after updates

As early as February 5th, the Network Security Threat and Vulnerability Information Sharing Platform of the Ministry of Industry and Information Technology had issued a warning on preventing security risks of OpenClaw open source AI intelligent agents. It clearly pointed out that the agent has high security risks in default or improper configuration, which can easily lead to network attacks, information leaks, and other problems. At the same time, targeted prevention suggestions were given to sound the alarm for users. On the evening of March 10th, Wei Liang, Vice President of the China Academy of Information and Communications Technology, and other experts further added reminders, breaking the misconception that "version updates are security" - although the latest version can fix known security vulnerabilities, it cannot completely eliminate all risk hazards.

Experts explain that the security risks of OpenClaw stem from the dual combination of its own characteristics and ecological shortcomings. On the one hand, in order to achieve the ability to autonomously execute tasks, it is granted high system permissions by default, which can access the local file system, read environment variables, call external APIs, and install extension functions. However, its default security configuration is extremely fragile, and once an attacker finds a breakthrough, it is easy to obtain complete control of the system. On the other hand, the current skill pack market for "Lobster" lacks strict review, and some plugins on community platforms such as ClawHub pose a risk of malicious poisoning. After installation, it may lead to key theft, Trojan implantation, and other issues. Even if upgraded to the latest version, without targeted protection, it may still be attacked.

Specifically, the security risks that OpenClaw has revealed mainly focus on four aspects: first, the risk of "prompt word injection", where attackers can hide malicious instructions through web pages and induce agents to leak user system keys; The second is the risk of "misoperation", as misunderstandings of user instructions may result in the accidental deletion of important information such as emails and core production data; The third risk is the poisoning of functional plugins, as malicious plugins can lead to device control and sensitive data leakage; The fourth is the risk of security vulnerabilities. Currently, multiple high and medium risk vulnerabilities have been publicly exposed, which may lead to serious consequences such as system control and privacy breaches. For key industries, it may even cause business system paralysis.

Keywords:
OpenClaw lobster
Disclaimers:

HongKong.info Committed to providing fair and transparent reports. This article aims to provide accurate and timely information, but should not be construed as financial or investment advice. Due to the rapidly changing market conditions, we recommend that you verify the information yourself and consult a professional before making any decisions based on this information.

Popular Hong Kong News

1 International oil prices fell by over 11% in a single day, marking the largest drop since 2022 2 KKday's "Resurrection Thanksgiving Festival" is coming! Hong Kong and Macau outbound travel benefits are fully expanded 3 Raising lobsters requires a tight safety string! OpenClaw still carries risks after updates 4 The Hong Kong real estate market is rebounding: homeowners are rebounding, buyers are chasing after price increases, and some units have appreciated by over a million yuan in just 10 months! 5 2026: Decisive turning point for the Web3 industry 6 RWA tokenization: Trillion level financial new blue ocean officially launched 7 Hong Kong Metro invests 140 billion yuan to promote 6 major railway projects 8 The performance of major real estate companies in Hong Kong is improving! The momentum of real estate recovery continues to be released 9 Net inflow of over 50 billion yuan of funds into Hong Kong stock ETFs within the year 10 Deep Integration of AI and Web3: The Rise of the Intelligent Agent Economy

Recommended Reading

The strong rise of the Hong Kong dollar! The exchange rate is improving, and purchasing power is soaring
The strong rise of the Hong Kong dollar! The exchange rate is improving, and purchasing power is soaring
 Three new features of Web3 games in 2026, with independent teams becoming the core force
Three new features of Web3 games in 2026, with independent teams becoming the core force
 Sierra Sea 2-bedroom property sold for 6.93 million yuan in Sai Sha Wan, ranking second in terms of profit margin for the estate
Sierra Sea 2-bedroom property sold for 6.93 million yuan in Sai Sha Wan, ranking second in terms of profit margin for the estate
 In 2026, whole house intelligence enters the first year of explosive growth
In 2026, whole house intelligence enters the first year of explosive growth
 Strong alliance! IBM and Nvidia Expand Enterprise AI Collaboration
Strong alliance! IBM and Nvidia Expand Enterprise AI Collaboration
 MTR starts well in 2026: strives to ensure full occupancy of shopping malls
MTR starts well in 2026: strives to ensure full occupancy of shopping malls
 Institutional DeFi: Balancing Compliance and Revenue, Industry Enters Institutional Transformation Turning Point in 2026
Institutional DeFi: Balancing Compliance and Revenue, Industry Enters Institutional Transformation Turning Point in 2026
 Investors make a decision in 1 minute! 13.6 million yuan to purchase a 3-bedroom apartment at Tsuen Wan CityLink
Investors make a decision in 1 minute! 13.6 million yuan to purchase a 3-bedroom apartment at Tsuen Wan CityLink

Popular Searches

Cryptocurrency ai Dollar Ethereum Binance gold btc 比特币 Securities Trading Crypto Trading

Related News

In 2026, whole house intelligence enters the first year of explosive growth
Technology 17 Mar 2026
In 2026, whole house intelligence enters the first year of explosive growth
What is the path for enterprises to break through the trust crisis in the home decoration industry?
Technology 16 Mar 2026
What is the path for enterprises to break through the trust crisis in the home decoration industry?
China launches a crayfish farming frenzy, shocking Goldman Sachs!
Technology 13 Mar 2026
China launches a crayfish farming frenzy, shocking Goldman Sachs!
Uber has partnered with Amazon Zoox!
Technology 12 Mar 2026
Uber has partnered with Amazon Zoox!