PANews March 2 News, GoPlus Chinese Community issued an alert: OpenClaw Gateway currently has a high-severity vulnerability. Please upgrade immediately to version 2026.2.25 or higher, audit and revoke unnecessary credentials, API keys, and node permissions granted to Agent instances. The analysis states that OpenClaw runs through a WebSocket Gateway bound to the localhost, which serves as the core coordination layer for the Agent and is an important component of OpenClaw. The attack targets the weakness in the Gateway layer, requiring only one condition: the user accesses a malicious website controlled by hackers in their browser.
The complete attack chain is as follows:
- The victim visits a malicious website controlled by the attacker in their browser;
- JavaScript on the page initiates a WebSocket connection to the OpenClaw Gateway on the localhost;
- Subsequently, the attack script attempts to brute-force the gateway password hundreds of times per second;
- After successfully cracking the password, the attack script silently registers as a trusted device;
- The attacker gains administrator-level control of the Agent.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
The Ministry of State Security warns: Token scams are occurring frequently; you may be involved in illegal financial activities or be exploited by overseas intelligence agencies
The Ministry of State Security has recently warned about various scams that use the slogan “accumulating Tokens can make you rich” and said these activities endanger the country’s economic security. It also urged the public to handle illegal cryptocurrency trading with caution.
GateNews46m ago
360 finds three major security vulnerabilities in OpenClaw, involving 1 high-severity and 2 medium-severity issues
Gate News message: On April 7, 360 vulnerability-hunting intelligence agents recently discovered and reported 1 high-risk and 2 medium-risk high-value vulnerabilities targeting OpenClaw. At present, all newly discovered vulnerabilities have been officially fixed and publicly disclosed. The three newly discovered vulnerabilities directly target the core operating mechanism of the AI intelligence agents, directly affecting the core security of users’ devices, data, and accounts.
GateNews46m ago
Solana Foundation unveils security overhaul days after $270 million Drift exploit
The Solana Foundation announced a suite of security initiatives on Monday, just five days after decentralized finance (DeFi) platform Drift Protocol suffered a $270 million exploit carried out by a North Korean state-affiliated group following a six-month social engineering campaign.
The
CoinDesk46m ago
Risk management team Chaos Labs left Aave due to budget issues—v4 security is in question?
The risk management team, Chaos Labs, announced it is terminating its partnership with Aave due to long-term losses and irreconcilable differences in risk management. At this time, Aave V4 has just gone live; after upgrading, Chaos needs to rebuild its risk tools, and the budget requirements are higher than what Aave is willing to accept. In addition, Aave is facing the departure of multiple core team members, raising doubts about operational stability.
ChainNewsAbmedia3h ago
Savannah Guthrie returns to The Today Show, and her mother Nancy Guthrie’s crypto kidnapping case—the Bitcoin ransom—has still not been solved
NBC anchor Savannah Guthrie returned to The Today Show today, but her 84-year-old mother, Nancy, is still missing in Arizona, with the kidnappers demanding a $6 million Bitcoin ransom. After 65 days of her disappearance, there has been no major progress in the case. Savannah expressed guilt, saying she believes her mother’s kidnapping may be related to her high profile.
GateNews3h ago
Deepfake AI Threats to KYC Systems Create New Challenges for Bank and Crypto Platform Security
Deepfake AI is seriously threatening banks and KYC systems at crypto platforms, as attackers use tools that combine deepfakes and voice cloning to bypass identity verification. Financial experts recommend building a layered defense system to keep up with continuously evolving fraud tactics and protect digital identity security.
GateNews4h ago
