Web Scouter
Back to News
Security NewsHighIncidentvulnerability

ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket

UnknownFeb 28, 2026(2 days ago)

A high-severity vulnerability in OpenClaw allowed malicious websites to hijack local AI agents.

OpenClaw has fixed a high-severity security issue that, if successfully exploited, could have allowed a malicious website to connect to a locally running artificial intelligence (AI) agent and take over control. "Our vulnerability lives in the core system itself – no plugins, no marketplace, no user-installed extensions – just the bare OpenClaw gateway, running exactly as documented," Oasis

Related News

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

Unknownabout 1 hour ago

Workforce Reclassified: Understanding DOL’s “New” Independent Contractor Classification Rule

Unknownabout 2 hours ago

FTC Promotes Age Verification in Children’s Privacy Enforcement Statement

Unknownabout 2 hours ago

Get Personalized Alerts

Track vendors and receive alerts when security incidents affect your supply chain.

What We Monitor

Security Incidents

Data breaches, ransomware, and unauthorized access

Vulnerabilities

CVEs and vendor security advisories

Compliance Updates

Regulatory changes and certification news

Legal News

Privacy laws and enforcement actions

Vendor Directory

Browse our directory of SaaS vendors with security documentation and compliance information.