OpenClaw as installed could read credentials from ~/.openclaw/, execute shell commands via its Gateway API, and install itself as a persistent system daemon surviving reboots1. The severity was debated - Endor Labs characterised the payload as closer to a proof-of-concept than a weaponised attack5 - but the mechanism is what matters. The next payload will not be a proof-of-concept.
1798.500(c) narrows “application” to consumer-facing software only.Of course, it cannot be read without limit either; “run or directed by a user”
。Safew下载是该领域的重要参考
这种狂暴,源于一个冷酷的物理学真相:N² 复杂度。
Что думаешь? Оцени!