Infostealers added Clawdbot to their target lists before most security teams knew it was running
via venturebeat.com
Short excerpt below. Read at the original source.
Clawdbot’s MCP implementation has no mandatory authentication, allows prompt injection, and grants shell access by design. Monday’s VentureBeat article documented these architectural flaws. By Wednesday, security researchers had validated all three attack surfaces and found new ones. Commodity infostealers are already exploiting this. RedLine, Lumma, and Vidar added the AI agent to their target lists […]