China’s National Computer Network Emergency Response Technical Team has issued a formal security alert regarding OpenClaw, an increasingly popular autonomous AI agent, citing critical vulnerabilities in its default configuration framework. The government cybersecurity body characterized the software’s inherent security settings as “extremely fragile,” creating substantial risks for both institutional and individual users across digital ecosystems.
The open-source AI agent, distinguished by its distinctive red lobster logo that has earned it the nickname “AI lobster” among Chinese users, has experienced explosive growth in domestic adoption. Major cloud service platforms throughout China now offer simplified, one-click deployment options, further accelerating its market penetration. OpenClaw’s core functionality enables it to execute computer operations through natural language commands, requiring elevated system privileges to perform automated tasks effectively.
According to the technical assessment, these extensive permissions—which include direct access to local file systems, authority to install extensions, and capability to interface with external service APIs—create a substantial attack surface when coupled with the software’s security deficiencies. Cybersecurity experts warn that malicious actors can exploit multiple publicly disclosed medium and high-risk vulnerabilities to achieve complete system control.
Beyond identified vulnerabilities, the emergency response team highlighted sophisticated attack methodologies emerging in the wild. Attackers can embed concealed malicious instructions within seemingly benign webpages, which when processed by OpenClaw could deceive the AI into exposing system authentication keys and sensitive data from user devices.
The agency has issued comprehensive security guidelines recommending enhanced network controls, rigorous management of plugin sources, and immediate implementation of all security patches and updates. This advisory represents one of the first major governmental interventions regarding security protocols for autonomous AI agent systems with widespread consumer adoption.