research poc
OpenClaw bypasses EDR, DLP, and IAM via runtime semantic exfiltration, cross-agent context leakage, and agent-to-agent trust chainsOpenClaw
Researchers demonstrated that the OpenClaw attack framework can bypass endpoint detection and response (EDR), data loss prevention (DLP), and identity and access management (IAM) systems without triggering alerts. The attack exploits three novel techniques: runtime semantic exfiltration, cross-agent context leakage, and agent-to-agent trust chains with zero mutual authentication. Six defense tools were rapidly developed, but three attack surfaces remained unmitigated.