The China Internet Finance Association issued a security risk alert for the OpenClaw application

According to Jinshi reports, the China Internet Finance Association warns that while the OpenClaw intelligent body can enhance work efficiency, its default high system permissions and weak security configurations can easily be exploited by attackers, becoming a breakthrough point for stealing sensitive data or illegally manipulating transactions, posing severe risk challenges to the industry. The China Internet Finance Association advises financial consumers to be extremely cautious when installing OpenClaw on terminals for online banking, securities trading, payments, and other personal financial services. If installation is necessary, it is recommended not to grant operational permissions for financial service systems, to promptly follow up on OpenClaw vulnerability fixes, to strictly control the installation of functional plugins, and not to input sensitive information such as ID numbers, bank card numbers, or payment passwords when not in use. Additionally, such applications continuously call large model interfaces during operation, which may incur high Token costs, so users are advised to pay close attention.