The Ministry of Industry and Information Technology of China released six do's and don'ts regarding the security risks of OpenClaw

The Ministry of Industry and Information Technology of China has released a document titled "Six Dos and Don'ts for Preventing Security Risks of OpenClaw (Lobster) Open Source Intelligent Agents," which outlines the typical application scenario security risks of OpenClaw, including: the smart office scenario mainly has prominent risks of supply chain attacks and intrusions into the corporate intranet; the development and operation scenario mainly has prominent risks of sensitive information leakage of system devices and being hijacked; the personal assistant scenario mainly has prominent risks of personal information theft and sensitive information leakage; the financial transaction scenario mainly has prominent risks of triggering erroneous transactions or even account takeover.

In addition, it points out six usage recommendations: use the official latest version; strictly control the internet exposure; adhere to the principle of least privilege; use the skill market with caution; guard against social engineering attacks and browser hijacking; establish a long-term protection mechanism.