Two security teams have shown, in separate research published this week, that OpenClaw, the popular self-hosted AI agent, can be driven to run attacker-controlled code or hand over sensitive data through ordinary-looking inputs.
Imperva buried instructions inside shared contacts, vCards, and locati...
**Source : The Hacker News | 11 juin 2026**
Two security teams have shown, in separate research published this week, that OpenClaw, the popular self-hosted AI agent, can be driven to run attacker-controlled code or hand over sensitive data through ordinary-looking inputs.
Imperva buried instructions inside shared contacts, vCards, and location pins that the agent executed without the victim ever seeing them. Varonis built a test agent on
👉 **Lire l'article complet sur The Hacker News :** [https://thehackernews.com/2026/06/new-attacks-trick-openclaw-ai-agent.html](https://thehackernews.com/2026/06/new-attacks-trick-openclaw-ai-agent.html)
Commentaires (0)
Laisser un commentaire
Aucun commentaire pour le moment. Soyez le premier à commenter !