On March 10, the National Internet Emergency Center issued a risk alert concerning the OpenClaw security software. Lately, there has been a notable uptick in the downloads and utilization of the OpenClaw application, with prominent domestic cloud platforms providing one-click deployment options. This proxy software is capable of directly controlling a computer to carry out tasks via natural language instructions. Nevertheless, owing to its inadequate default security settings, attackers can readily seize system control upon infiltration.

At present, the incorrect installation and usage of OpenClaw have given rise to several security threats:

• The threat of "prompt injection," where attackers construct malicious commands to deceive OpenClaw into reading them, potentially resulting in the exposure of user system keys.
• The threat of "misoperation," where OpenClaw might misconstrue commands and erase crucial information, such as emails and vital production data.
• The threat of malicious functional plugins, with numerous plugins identified as harmful or potentially dangerous, which could pilfer keys and install Trojans post-installation.
• The threat of security flaws, with multiple high and medium-risk vulnerabilities uncovered in OpenClaw, which, if leveraged, could lead to system control, privacy breaches, and sensitive data leaks.

The National Internet Emergency Center advises that pertinent organizations and individual users implement security measures, including reinforcing network control, bolstering credential management, rigorously overseeing plugin sources, and consistently monitoring for patches and security updates.