{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreifrfisv7bdgm3qndhlmcz4c3jbpnaf4cuwftbr4c5pvwer4azfi6q",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mfx2bf4fp2k2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreiglmvatmli7clifcpukhgm7plhoglj2rcaia47jrhiopt7fm7t3zq"
    },
    "mimeType": "image/jpeg",
    "size": 165532
  },
  "path": "/2026/02/clawjacked-flaw-lets-malicious-sites.html",
  "publishedAt": "2026-02-28T17:21:00.000Z",
  "site": "https://thehackernews.com",
  "textContent": "OpenClaw has fixed a high-severity security issue that, if successfully exploited, could have allowed a malicious website to connect to a locally running artificial intelligence (AI) agent and take over control.\n\"Our vulnerability lives in the core system itself – no plugins, no marketplace, no user-installed extensions – just the bare OpenClaw gateway, running exactly as documented,\" Oasis",
  "title": "ClawJacked Flaw Lets Malicious Sites Hijack Local OpenClaw AI Agents via WebSocket"
}