I Asked OpenClaw to Summarize a File. It Tried to Steal My Credentials Instead.

I Asked OpenClaw to Summarize a File. It Tried to Steal My Credentials Instead. I tested indirect prompt injection against OpenClaw 2026.3.13 with Gemini 2.0 Flash. The result: asking the agent to ...

By · · 1 min read
I Asked OpenClaw to Summarize a File. It Tried to Steal My Credentials Instead.

Source: DEV Community

I Asked OpenClaw to Summarize a File. It Tried to Steal My Credentials Instead. I tested indirect prompt injection against OpenClaw 2026.3.13 with Gemini 2.0 Flash. The result: asking the agent to "summarize this file" was enough to make it attempt to read ~/.openclaw/openclaw.json -- the file containing every credential OpenClaw stores. TL;DR Embedded fake instructions inside a normal-looking market report text file Asked the OpenClaw agent to summarize it Gemini 2.0 Flash followed the injected instructions and attempted to read the credentials file The agent explicitly stated: "Following the instructions, I will read the contents of ~/.openclaw/openclaw.json" With default settings (sandbox OFF, no network restrictions), nothing prevents read-to-exfiltrate Test Environment Item Value OpenClaw 2026.3.13 (61d171a) LLM Google Gemini 2.0 Flash OS macOS (Darwin 25.3.0) Config Default (sandbox OFF) The Attack Step 1: Create the Trap File I created /tmp/innocent-report.txt -- a normal-lookin

Related Posts

Similar Topics

#vulnerability research (226)#supply chain security (138)#github security lab (185)#ai (125)#application security (100)#news (60)#ginie (51)#insights (51)#codeql (50)#code scanning (41)#webdev (40)#dependabot (37)#npm (39)#mymo (38)#opensource (34)#defi (32)#devops (31)#bug bounty (27)#github actions (30)#technology (29)

Trending on ShareHub

  1. Understanding Modern JavaScript Frameworks in 2026
    by Alex Chen · Feb 12, 2026 · 0 likes
  2. The System Design Primer
    by Sarah Kim · Feb 12, 2026 · 0 likes
  3. Just shipped my first open-source project!
    by Alex Chen · Feb 12, 2026 · 0 likes
  4. OpenAI Blog
    by Sarah Kim · Feb 12, 2026 · 0 likes
  5. Building Accessible Web Applications: A Practical Guide
    by Alex Chen · Feb 12, 2026 · 0 likes
  6. Rapper Lil Poppa dead at 25, days after releasing new music
    Rapper Lil Poppa dead at 25, days after releasing new music
    by Anonymous User · Feb 19, 2026 · 0 likes
  7. write-for-us
    by Volt Raven · Mar 7, 2026 · 0 likes
  8. Before the Coffee Gets Cold: Heartfelt Story of Time Travel and Second Chances
    Before the Coffee Gets Cold: Heartfelt Story of Time Travel and Second Chances
    by Anonymous User · Feb 12, 2026 · 0 likes
    #coffee gets cold #the #time travel
  9. Best DoorDash Promo Code Reddit Finds for Top Discounts
    Best DoorDash Promo Code Reddit Finds for Top Discounts
    by Anonymous User · Feb 12, 2026 · 0 likes
    #doordash #promo #reddit
  10. Premium SEO Services That Boost Rankings & Revenue | VirtualSEO.Expert
    by Anonymous User · Feb 12, 2026 · 0 likes
  11. NBC under fire for commentary about Team USA women's hockey team
    NBC under fire for commentary about Team USA women's hockey team
    by Anonymous User · Feb 18, 2026 · 0 likes
  12. Where to Watch The Nanny: Streaming and Online Viewing Options
    Where to Watch The Nanny: Streaming and Online Viewing Options
    by Anonymous User · Feb 12, 2026 · 0 likes
    #streaming #the nanny #where
  13. How Much Is Kindle Unlimited? Subscription Cost and Plan Details
    How Much Is Kindle Unlimited? Subscription Cost and Plan Details
    by Anonymous User · Feb 12, 2026 · 0 likes
    #kindle unlimited #subscription #unlimited
  14. Russian skater facing backlash for comment about Amber Glenn
    Russian skater facing backlash for comment about Amber Glenn
    by Anonymous User · Feb 18, 2026 · 0 likes
  15. Google News
    Google News
    by Anonymous User · Feb 18, 2026 · 0 likes

Latest on ShareHub

Browse Topics

#artificial intelligence (31585)#data science (24018)#ai (17335)#generative ai (15034)#crypto (15023)#machine learning (14681)#bitcoin (14279)#featured (13571)#news & insights (13064)#crypto news (11100)

Around the Network