China issues second warning on OpenClaw risks amid adoption frenzy

China's leading cybersecurity agency has escalated its concerns over the wildly popular AI agent OpenClaw, issuing a second formal warning about critical security flaws. The National Computer Network Emergency Response Technical Team/Coordination Center of China (CNCERT), a key non-governmental technical platform, published a notice on its WeChat account cautioning that improper installation and use of the Austrian-developed software is creating severe security and data risks. This advisory arrives amidst a contradictory landscape where major Chinese cloud providers are aggressively marketing easy OpenClaw deployment to capitalize on its viral adoption by local governments and corporations.

CNCERT specifically highlighted two major threat vectors inherent to OpenClaw's design. The first is 'prompt injection,' where attackers embed hidden malicious instructions in webpages that, when processed by the AI, can trick it into leaking sensitive system keys. The second is 'operational errors,' where the agent may misinterpret user commands and unintentionally delete critical files and emails, leading to significant data loss. The agency directly links these vulnerabilities to the core functionality that made OpenClaw a global sensation: its ability to autonomously perform tasks like organizing emails and drafting reports, which requires high-level system permissions that dramatically increase the attack surface for breaches.