ClawJacked attack let malicious websites hijack OpenClaw to steal data

Security researchers have disclosed a high-severity vulnerability dubbed "ClawJacked" in the popular AI agent OpenClaw that allowed a malicious website to silently bruteforce access to a locally ...
Unite.AI

OpenClaw vs Claude Code: Remote Control Agents

Two tools that have recently landed, taken together, define what the next phase of AI agent competition looks like. On5, Anthropic released Remote Control for Claude Code — a feature that lets ...

Fake Next.js job interview tests backdoor developer's devices

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...

OpenClaw creator’s advice to AI builders is to be more playful and allow yourself time to improve

Peter Steinberger talks about the creation of his viral AI agent OpenClaw and how being more "playful" makes for a better way ...

OpenClaw creator says "vibe coding" is a slur against AI-assisted development

The term vibe coding is often used when developers rely heavily on AI tools to generate, modify, and refine code. The name ...

OpenClaw creator says 'vibe coding' has become a slur

"They don't understand that it's a skill," OpenClaw creator Peter Steinberger said, analogizing coding with AI to learning to play guitar.
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...