Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

OpenClaw ClawJacked localhost WebSocket brute-force security flaw

Vulnerability
First reported
Last updated
Happening score
H score 27
2 unique sources, 2 articles

Summary

Hide ▲

OpenClaw’s ClawJacked vulnerability allowed a malicious website to brute-force a localhost WebSocket connection and take control of a local instance, putting sessions, credentials, and workstations at risk. The flaw worked because browser cross-origin rules did not stop WebSocket traffic to localhost, and the 127.0.0.1 rate-limit exemption let password guesses run at high speed. Once a password was guessed, the attacker could register as a trusted device and move into logs, files, commands, and connected nodes. OpenClaw fixed the issue in version 2026.2.26 and users were told to update immediately.

Related Happenings

OpenClaw/OpenShell managed sandbox backend Claw Chain (multiple vulnerabilities)

Vulnerability
First: 15.05.2026 16:35 Last: 15.05.2026 16:35 Sources 1

About this happening: Researchers disclosed **four OpenClaw flaws** in the **OpenShell managed sandbox backend** that can be chained for **data theft**, **privilege escalation**, and **persistence**. T...

Open Happening

Cline Kanban server WebSocket origin/authentication security flaw

Vulnerability
First: 07.05.2026 17:30 Last: 07.05.2026 17:30 Sources 1

About this happening: **Cline Kanban server** has a **critical WebSocket origin/authentication flaw** that can let a webpage a developer visits **exfiltrate workspace data**, **inject terminal commands...

Open Happening

GhostLoader RAT-stealer via @openclaw-ai/openclawai

Malware Activity
First: 09.03.2026 20:31 Last: 09.03.2026 20:31 Sources 1

About this happening: A malicious **@openclaw-ai/openclawai** npm package is delivering **GhostLoader** to **macOS** hosts, enabling **credential theft**, **browser-session cloning**, and persistent re...

Open Happening

ClawHub malicious skills deliver Atomic Stealer

Malware Activity
First: 28.02.2026 19:21 Last: 28.02.2026 19:21 Sources 1

About this happening: Researchers found **malicious skills** on **ClawHub** delivering a **new Atomic Stealer variant** to **macOS** users, turning the OpenClaw skills marketplace into a malware delive...

Open Happening

OpenClaw-targeting infostealer file-grabbing activity

Malware Activity
First: 17.02.2026 11:35 Last: 17.02.2026 11:35 Sources 1

About this happening: The **infostealer**’s first live attack against **OpenClaw** now matters because it used a **broad file-grabbing routine** to collect secrets, tokens, keys, and assistant context...

Open Happening

Timeline

  1. 01.03.2026 23:44 2 articles · 2mo ago

    OpenClaw releases version 2026.2.26 to fix ClawJacked

    Mitigation Patch Update

    OpenClaw released version 2026.2.26 to harden WebSocket handling and add protections against localhost loopback abuse, closing the path that let ClawJacked brute-force the management password from browser JavaScript and hijack a locally running instance.

    Show sources
    Open in new tab
  2. 01.03.2026 23:44 1 articles · 2mo ago

    ClawJacked disclosure details OpenClaw localhost WebSocket brute force

    Initial Disclosure

    Security researchers disclosed ClawJacked in OpenClaw, a high-severity flaw that let a malicious website use browser JavaScript against the platform’s localhost WebSocket interface to silently brute-force the management password, register as a trusted device, and gain access for credential theft, log access, file exfiltration, and shell-command execution on paired nodes.

    Show sources
    Open in new tab