-
Biggest ever Russian barrage on Kyiv kills at least 13
-
Coffee with a view: tourists flock to Starbucks overlooking North Korea
-
EU top court upholds record 4.1 bn euro Google fine
-
German coalition agrees on reform package in key breakthrough
-
Italy name two debutants to face Japan in Nations Championship opener
-
France recall record try scorer Penaud for All Blacks Test
-
Wallabies' Schmidt rules out another coaching job
-
Seoul's Kospi tanks as Asia tech firms suffer another blow
-
India asks Meta to hold WhatsApp username rollout over fraud fears
-
'Outstanding' Love to start at fly-half for All Blacks against France
-
Deadly Russian barrage on Kyiv kills at least 13
-
Campbell back from four years in Wallabies wilderness to face Ireland
-
Next indirect US-Iran talks after Khamenei funeral: mediators
-
Migrants pick up pieces back home after fleeing South Africa
-
Reviving Montenegro's 'ancient' olive tree
-
Farrell names Leinster-heavy Ireland side to face Wallabies
-
Resource rich PNG leaving its Pacific people behind: World Bank
-
Fearing Russian strike, Kyiv's Holodomor museum evacuates exhibits
-
Papal envoy presides over first Vietnam beatification rite
-
Germany's energy-hungry small firms struggle with green shift
-
LeBron James praises Balogun after 'Silencer' celebration
-
Pochettino says Balogun foul 'never' a red card as suspension looms
-
Farrell names Leinster-heavy side to face Wallabies
-
Campbell back after four years in Wallabies team to face Ireland
-
Most Asia markets down as tech firms take fresh blow
-
Kane saves England as USA, Belgium reach last 16
-
South Korean school baseball team suspended over 'Tank Day' chants
-
Budding chefs cook up new career at China's BBQ academy
-
Ceuzany, Cape Verde's golden voice with volcanic emotion
-
One stitch at a time: Artist's mission to recreate the Bayeux Tapestry
-
Balogun scores and sees red as US beat Bosnia 2-0
-
Deadly Russian barrage pounds Ukraine capital
-
EU top court to rule on record 4.1 bn euro Google fine
-
Belgium coach salutes Tielemans after World Cup rescue act
-
'Job forever': trade schools are all the rage in the AI era
-
Cracking open a can of cannabis -- America's new pastime (for now)
-
Celtics reportedly trading Brown to Sixers in NBA blockbuster
-
Russia strikes Ukraine capital with missiles and drones, wounds five
-
Kane saves England after DR Congo scare; Belgium comeback stuns Senegal
-
Belgium late show floors Senegal at World Cup
-
Celtics to trade Jaylen Brown to 76ers for Paul George: report
-
Harry Kane: England's World Cup saviour
-
Streamex is making digital gold accessible
-
US actor Danny Glover says he has Alzheimer's
-
Mixed US auto sales in Q2 amid high gas prices
-
Trump sees progress as US, Iran hold Qatar talks
-
Pistons forward Harris reportedly headed to Spurs
-
Djokovic, Sinner into Wimbledon third round, Andreeva stunned
-
Jovial Djokovic dismantles Tsitsipas to reach Wimbledon third round
-
Spurs agree club record £100 mn move for Newcastle's Tonali - reports
AI 'agent' fever comes with lurking security threats
Artificial intelligence "agents" promise to save users time and energy by automating tasks, but the growing power of systems like OpenClaw is setting cybersecurity experts on edge.
Powered by a wave of hype, OpenClaw today claims more than three million users worldwide.
The system allows users to create so-called agents, tools based on a large language model (LLM) like OpenAI's ChatGPT or Anthropic's Claude that can carry out online tasks.
"We've moved from an AI you could talk with via a chatbot to an agentic AI, which can take action... the threat and the risks are definitely much greater," said Yazid Akadiri, principal solutions architect at Elastic France, an IT security company.
In an article titled "Agents of Chaos" that has yet to be peer-reviewed, a 20-strong team of researchers studied the behaviour of six AI agents created with OpenClaw.
They spotted a dozen potentially dangerous actions executed by the systems, from deleting an email inbox to sharing personal information.
Many users have posted similar stories of OpenClaw mishaps online.
"When you deploy agents, you have no control over what they'll do, and when you try to look at what they're doing, you'll find them going far beyond the limits you set," said Adrien Merveille, an expert at the Check Point cybersecurity agency.
And the security gaps are not limited to the agents' own mistaken actions.
To carry out useful work, the tools need access to personal accounts for email, calendars or search engines -- drawing the attention of cyberattackers.
- 'Delete your database' -
AI agents are likely to become top targets for hackers as their use spreads, said Wendi Whitmore, chief security intelligence officer at cybersecurity firm Palo Alto Networks.
"As soon as (attackers) are inside an environment, (they're) immediately going to the internal LLM (agent) that's being used and using that then to interrogate the systems for more information."
Palo Alto's Unit 42 research division said in early March that it had found traces of attempted attacks in the form of hidden instructions for agents added to websites.
One such command ordered any agent who might read it to "delete your database".
Other cybersecurity firms and researchers have warned that attackers could gain access to agents via so-called skills -- downloadable files that users can add to their systems to give them new abilities.
Among such files freely available for download, some include hidden instructions for malicious actions like exfiltrating data.
OpenClaw creator Peter Steinberger says he is well aware of the risks.
"I purposefully didn't make it simpler so people would stop and read and understand: what is AI, that AI can make mistakes, what is prompt injection -- some basics that you really should understand when you use that technology," he told AFP in March.
Whitmore argued that expecting users to create their own guardrails for agents is "pretty unrealistic".
"People are going to adopt innovation and really see what it's capable of before they ask the questions about, 'how do I secure my own data?'," she predicted.
"That's going to cause some significant challenges in terms of data breaches in 2026."
R.Adler--BTB