Ian Campbell 🏴2d ago

RE: https://social.lansky.name/@hn50/116341899721749250

oh jesus tapdancing christ

[post was removed; h/t @tom https://web.archive.org/web/20260403174403/https://www.reddit.com/r/sysadmin/comments/1sbdw29/if_youre_running_openclaw_you_probably_got_hacked/?solution=44f7932102051db444f7932102051db4&js_challenge=1&token=bbbe4bf1c9a2b5160829c4be34da58614082fcc1e861ded7105b5ece1538a6d5 )

Show threadIan Campbell 🏴2d ago
i know i'm an AI skeptic, but i did not expect "virally popular agent does no authentication checks before escalating system privileges"
Show threadIan Campbell 🏴2d ago

thing is, this is likely to cause many downstream enterprise breaches, even in enterprises that actively ban openclaw.

unauthorized instances, or instances that allow a threat actor to pivot from private hardware to work hardware.

pure negligence, rolling OpenClaw out in the way they did, both the devs and all the hosting companies that saw profit in providing easy-install packages.

Lisi Hocke2d ago
Show threadIan Campbell 🏴

the other fun part?

even if you don't set up an exposed instance

even if you require auth

if any entity you pair openclaw with gets compromised, regardless of its permissions level, it can escalate to admin and pwn you

Apr 3 at 5:57pmWeb
Show threadDeborah Preuss, pcc 🇨🇦2d ago
@neurovagrant it's got so I (not a dev) am not keen to add any new apps to my devices. But then - this crap could creep in, in updates to existing apps, right? 😡
Show threadD Ingram2d ago
@neurovagrant Is OpenClaw and its ilk a cunning long term plan by Carbon Black etc to sell their computer lockdown products?