Latest OpenClaw Flaw Can Let Malicious Websites Hijack Local AI Agents - Security Boulevard

The "ClawJacked" vulnerability in the OpenClaw AI personal assistant allows malicious websites to silently hijack a user's local AI agent. This exploit abuses the AI agent's inherent trust in localhost WebSocket connections, enabling attackers to bypass authentication and gain full control over the agent with system privileges.