Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

ClawJacked

ClawJacked flaw let malicious websites brute force local OpenClaw instances

Cybercrime, Research, Vendors, Vulnerabilities

March 2, 2026

A high severity OpenClaw vulnerability called ClawJacked let malicious websites brute force local management passwords at hundreds of guesses per second. OpenClaw issued a fix in version 2026.2.26 on February 26 to block the attack.

About
Editorial Policy
Privacy
Contact