The most recent news about crypto industry at Cointelegraph. Latest news about bitcoin, ethereum, blockchain, mining, cryptocurrency prices and more
The widespread integration of AI assistants such as OpenClaw introduces critical security risks that open up users to unauthorized actions, data exposure, system compromises and drained crypto wallets, according to cybersecurity firm CertiK.
OpenClaw is a self-hosted AI agent that integrates with messaging platforms such as WhatsApp, Slack, and Telegram and can autonomously take actions on users' computers, such as managing email, calendars, and files. , launched in November 2025, to over 300,000 GitHub stars, a bookmarking or “like” feature on the developer platform, signaling a surge in popularity but accumulating serious “security debt” in the process, noted CertiK. However, within weeks of launch, Bitsight identified 30,000 internet-exposed instances of OpenClaw, and SecurityScorecard researchers found 135,000 instances across 82 countries, with 15,200 specifically vulnerable to remote code execution. OpenClaw has also become the most “aggressively scrutinized AI agent platform from a security standpoint,” accumulating more than 280 GitHub Security Advisories, 100 Common Vulnerabilities and Exposures , and a “string of ecosystem-level attacks” since its November launch, CertiK researchers wrote in a report shared with Cointelegraph.Because OpenClaw acts as a bridge between external inputs and local system execution, “it introduces classic attack vectors,” the researchers said. These include local gateway hijacking, where malicious websites or payloads could exploit the agent’s local machine presence to extract sensitive user data or execute unauthorized commands.CertiK warned of the dangers of plugins, which could add channels, tools, HTTP routes, services, and providers, while malicious skills could be installed from local or marketplace sources. Unlike traditional malware, “malicious skills” can manipulate behavior through natural language, resisting conventional scanning. “Once launched, the malware can exfiltrate sensitive information such as passwords and cryptocurrency wallet credentials.” Malicious backdoors may also be hidden within legitimate functional codebases, “where they fetch seemingly benign URLs that ultimately deliver shell commands or malware payloads,” they added. CertiK researchers told Cointelegraph that attackers strategically seeded malicious skills across various high-value categories, “including utilities for Phantom, wallet trackers, insider-wallet finders, Polymarket tools, and Google Workspace integrations.” “They cast a remarkably wide net across the crypto ecosystem, with the primary payload designed to target a large number of browser extension wallets simultaneously, such as MetaMask, Phantom, Trust Wallet, Coinbase Wallet, OKX Wallet, and many others,” they said. The researchers added that there was a “clear overlap in tradecraft with the broader crypto-theft ecosystem, like social engineering, fake utility lures, credential theft, wallet-focused phishing.”OpenClaw founder Peter Steinberg, who recently joined OpenAI, said they are working on improving OpenClaw’s security. "Something that we worked on for the last two months is security. So things are a lot better on that front,"Earlier this month, cybersecurity firm OX Security reported a phishing campaign that used fake GitHub posts and a bogus “CLAW” token toCybersecurity company SlowMist introduced a security framework for AI agents earlier in March, pitching it as a “digital fortress” to defend against risks that come with autonomous systems handling onchain actions and digital assets.Cointelegraph is committed to independent, transparent journalism. This news article is produced in accordance with Cointelegraph’s Editorial Policy and aims to provide accurate and timely information. Readers are encouraged to verify information independently. Read our Editorial Policy
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Key Bills Free Agent Asserts Desire to Return to Buffalo in 2026A player critical to the team's defensive efforts a season ago says he wants to rejoin the Bills for the upcoming campaign.
Read more »
Executed murderer Karla Faye Tucker’s creepy pickaxe confession still rattles retired FBI agentToday's Video Headlines: 3/29/2026
Read more »
From FBI agent to mob associate: How Donnie Brasco survived six years undercoverDonnie Brasco: My Undercover Life in the Mafia'You go six years in the operation and then a year prepping before the first trial,' he said. It was a relief to
Read more »
Okta’s CEO is betting big on AI agent identityTodd McKinnon on why AI agents need an identity, security in an OpenClaw era, and being “paranoid” in preparing for the SaaSpocalypse.
Read more »
Scorned ex-lover accuses Sinema of 'malicious' marriage interferenceFox News Channel offers its audiences in-depth news reporting, along with opinion and analysis encompassing the principles of free people, free markets and diversity of thought, as an alternative to the left-of-center offerings of the news marketplace.
Read more »
Meet The $580 Million Startup Making AI Models To Fight Artificial HackersAI cybersecurity firm Depthfirst has scored $120 million in funding to build a kind of “general security intelligence” that can defend against malicious AI.
Read more »