Researchers tricked an OpenClaw AI agent into leaking AWS keys and customer data with a phishing email

Security researchers at Varonis built an OpenClaw email agent, connected it to a Gmail inbox with fake company data, and then phished it. The agent, dubbed Pinchy, handed over AWS credentials, database connection strings, and a customer export without verifying who was asking. It took a single impersonation email. The experiment tested whether AI agents […]

This story continues at The Next Web

Researchers tricked an OpenClaw AI agent into leaking AWS keys and customer data with a phishing email

Researchers tricked an OpenClaw AI agent into leaking AWS keys and customer data with a phishing email

Popular News

ECB’s Lagarde says AI could trigger financial crises and calls for Cold War-style non-proliferation governance

Parafin lands a Goldman Sachs credit facility to embed lending inside Amazon, DoorDash, and Walmart

A Colombian AI startup wants to assist half of Latin America’s doctors. Andreessen Horowitz just backed it.

The Trump Mobile T1 was supposed to be made in America. It’s a Taiwanese phone with a gold coat.

FTC freezes sprawling subscription enterprise built on Cyprus and Delaware shells

China pitches free AI for the developing world as the G7 debates who gets access to American models

Europe’s carmakers are pivoting to defence as EV demand slows and military budgets soar

Behavox raises $175 million from BlackRock’s HPS to expand its AI compliance platform

Site Navigation

Quick Contact