OpenClaw is basically a cascade of LLMs in prime position to mess stuff up

Posted by Beeroness 7 hours ago

OpenClaw is basically a cascade of LLMs in prime position to mess stuff up(cacm.acm.org)

84 points | 57 commentspage 2

noncoml 4 hours ago|

In my experience OpenClaw is a glimpse of the future. For my use case however it’s too expensive to run with good models and too clunky with average models

sieep 3 hours ago|

OpenClaw seems good at exposing sensitive data. How do you even know anything on that site was generated by an agent? The entire api was out in the open without any sort of validation.

cyanydeez 5 hours ago||

This reminds me when the kiddies would group together to DDoS internet sites.

away0g 4 hours ago||

i remember back when i was a young botnet

jtbaker 4 hours ago||

sung in the voice of Pumbaa

When he was a young botnet!

[1] https://youtu.be/__pNuslNCro

add-sub-mul-div 4 hours ago||

I hadn't thought of that parallel before. LLMs are transitioning the society into script kiddies.

locusofself 4 hours ago||

This does make a quite a bit of sense. When I was a teenager in the 90s/early aughts, it was all IRC, script kiddie stuff. Reckless abandon. What worries me is that it seems like full-grown adults are happy to accelerate the dead internet and put security at risk. I assume it's not just teenagers running these stupid LLM bots.

blindriver 4 hours ago||

> LLMs hallucinate and make all kinds of hard-to-predict and sometimes hard-to-detect errors. AutoGPT had a tendency to report that it had completed tasks that it hadn’t really, and we can expect OpenClaw to do the same.

Ah, so a bit more useful than my teenage son? Where do I sign up??

chasd00 4 hours ago|

> Ah, so a bit more useful than my teenage son? Where do I sign up??

I’m glad I’m not the only one. As a parent, the “teenage son” is a bewildering sight to behold.

cactusplant7374 4 hours ago|

Peter Steinberger made an AI personal assistant. It looks like an interesting project that threatens major players like Apple and Amazon. People seem increasingly jealous of the success. What makes this any less secure than e-mail? I just don't see it. There are plenty of attack vectors of every piece of tech we use.

ubercore 4 hours ago||

This might make it less secure? https://apkash8.medium.com/moltbot-security-breach-wakeup-ca...

causal 4 hours ago|||

Wow great writeup and holy cow that's bad - I'm still trying to understand what OpenClaw/Moltbot can do that makes it worth this to so many people.

Veen 4 hours ago|||

There's a lot of, to put it lightly, bullshit in this blog article, starting with when openclaw was released (late November 2025, not January 25, 2026). The first bit of config — "listen: "0.0.0.0:8080" — is not the default. Default is loopback and it was when I first encounter this project at the end of December.

Essentially, the author has deliberately misconfigured an openclaw installation so it is as insecure as possible, changing the defaults and ignoring the docs to do so. Lied about what they've done and what the defaults are. Then "hacked" it using the vulnerability they created.

That said, there are definite risks to using something like openclaw and people who don't understand those risks are going to get compromised, but that doesn't justify blatant lying.

williamcotton 4 hours ago|||

https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/

jrochkind1 4 hours ago|||

the "with hands" part, which is it's whole thing.

wat10000 4 hours ago||

My email client won't decide on its own to delete all my email, forward a private email to someone who shouldn't see it, or send my bank password to a scammer who asks for it in the right way.