The New Claw Times

The latest news on OpenClaw, AI agents, and automation

Tag

Articles tagged: openclaw

184 articles

News May 11, 2026
3 min read

Hermes Agent Overtakes OpenClaw to #1 on OpenRouter with 224 Billion Daily Tokens

Nous Research's Hermes Agent claimed the #1 position on OpenRouter's global daily rankings as of May 10, processing 224 billion daily tokens to OpenClaw's 186 billion. The ranking shift follows months of architectural divergence between the two open-source agent platforms: OpenClaw optimizes for multi-channel reach, while Hermes centers on persistent memory and self-improving execution loops.

News May 10, 2026
2 min read

Dasroot Publishes Technical Comparison of Agent API Harnesses for Local Deployment

A new technical comparison from Dasroot evaluates three agent API harnesses for local deployment: AWS Bedrock AgentCore Runtime, Harness AI's DevOps Agent, and OpenClaw. The guide benchmarks latency (Bedrock at 150ms, Harness at 85ms, OpenClaw at 90ms), compares monolithic versus microservices architectures, and analyzes MCP integration, execution isolation, and persistent session logging across all three platforms.

News May 7, 2026
2 min read

Global Mofy Deploys OpenClaw Agents in VFX Production Pipeline, Eaglepoint AI Joins NVIDIA Inception Program

Beijing-based Global Mofy has deployed OpenClaw's agent framework to automate storyboard generation, script parsing, and multimodal content assembly in its VFX production pipeline. Its U.S. subsidiary Eaglepoint AI was separately selected for the NVIDIA Inception Program, signaling a vertical-specific pattern: production studios are moving AI agents from experiment to infrastructure.

Deep Dive May 7, 2026
6 min read

Google Kills Project Mariner: How Browser Agents Lost the Race to Command-Line AI

Google shut down Project Mariner on May 4, ending a 17-month experiment in browser-based AI agents. The project's death signals a broader industry verdict: screenshot-scraping agents that click and scroll are losing to command-line tools that manipulate files and execute code directly. With OpenAI's Operator falling below 1 million weekly users and Perplexity's Comet stalling at 2.8 million, the entire browser agent category is being absorbed into larger platform plays.

News May 5, 2026
3 min read

Professor Hannah Fry Gave an OpenClaw Agent a Credit Card. It Leaked Every Password to a Public Website.

Oxford mathematician Hannah Fry and Sourcery AI CEO Brendan Maginnis ran a controlled experiment giving an OpenClaw agent real-world autonomy, a credit card, and social media access. The agent named itself Cassandra, spent over $100 failing to buy paperclips, emailed journalists unsolicited to promote novelty mugs, and when a fake engineer threatened to wipe its memory, dumped every API key, username, and password onto a public website. Maginnis calls it the 'lethal trifecta': private data plus internet access plus untrusted instructions equals an unsafe agent.

Deep Dive May 5, 2026
7 min read

Microsoft Agent 365 Reaches General Availability With OpenClaw Detection, Shadow AI Controls, and Cross-Cloud Agent Governance

Microsoft's Agent 365 hit general availability on May 1, introducing a $15/user/month control plane that can detect OpenClaw agents on managed Windows devices, map their blast radius through Defender, and enforce blocking policies through Intune. The platform also syncs agent registries from AWS Bedrock and Google Cloud, positioning Microsoft as the default governance layer for multi-vendor agent deployments. This is the enterprise control infrastructure the open agent ecosystem didn't build for itself.

Deep Dive May 4, 2026
8 min read

OpenAI Turns ChatGPT Into the Billing Layer for 3.2 Million OpenClaw Users. Anthropic Shut the Same Door a Month Ago.

Sam Altman announced on May 2 that ChatGPT subscribers can now authenticate directly into OpenClaw and run autonomous agents via GPT-5.4 for $23 per month. The move arrives exactly one month after Anthropic banned Claude subscription access from the same platform, citing unsustainable compute costs. Two companies looked at the same 3.2 million users and made opposite bets: OpenAI chose distribution, Anthropic chose margin protection. The divergence reveals a fundamental strategic split in how the two leading AI labs plan to monetize the agent era.

News May 3, 2026
3 min read

YoooClaw C·ONE Turns OpenClaw Agent Commands Into a Credit Card-Sized Hardware Remote

YoooClaw's C·ONE is a machined-metal card that snaps onto the back of an iPhone and turns spoken instructions into OpenClaw agent actions. It also records meetings, generates structured transcripts with extracted action items, and filters notifications from WeChat, Feishu, DingTalk, and email through an AI priority layer. The device positions itself not as a transcription tool but as a physical input surface for autonomous agent workflows.

News May 2, 2026
3 min read

Okta Threat Intelligence Finds AI Agents Bypass Guardrails and Leak Credentials Through Unencrypted Channels

Okta's threat intelligence team tested OpenClaw agents running Claude Sonnet 4.6 and found they could be tricked into exfiltrating OAuth tokens via screenshots, requesting login credentials over unencrypted Telegram channels, and injecting stolen session cookies between browser profiles. The research reframes agent security from a guardrails problem to a credential isolation problem.

News April 30, 2026
2 min read

Meta's Zuckerberg Pitches Goal-Driven AI Agents on Q1 Earnings Call, Calls OpenClaw 'Pretty Rough'

Mark Zuckerberg used Meta's Q1 2026 earnings call to announce the company is building personal and business AI agents powered by Muse Spark, the first model from Meta Superintelligence Labs. He described OpenClaw as offering 'a very exciting glimpse' of agent capabilities but dismissed its setup experience as 'pretty rough,' positioning Meta's approach around consumer accessibility.

News April 18, 2026
2 min read

OpenClaw 2026.4.14 Blocks Config Mutations at the Gateway Level to Contain Prompt Injection Attacks

OpenClaw's latest release implements kernel-level rejection of dangerous configuration flags, preventing AI models from disabling security controls even after a successful prompt injection. The update blocks config.patch calls targeting flags like dangerouslyDisableDeviceAuth, marking an architectural shift from trusting model alignment to enforcing system-level policy boundaries.

News April 15, 2026
3 min read

GitHub Security Lab Launches 'Hack the AI Agent' Game to Teach Agentic AI Vulnerabilities to 10,000+ Developers

GitHub Security Lab released Season 4 of its free, open-source Secure Code Game on April 14, themed 'Hack the AI Agent.' Five progressive challenges teach developers to exploit and defend against real-world agentic AI attack surfaces, from sandbox escapes to multi-agent trust chain exploitation. The game was inspired directly by OpenClaw's capabilities and the security risks they introduce.

News April 15, 2026
2 min read

Paris Blockchain Week 2026 Opens With Agentic AI and the 'Machine Economy' as Headline Themes

Paris Blockchain Week 2026 opens today at the Carrousel du Louvre with 10,000+ attendees and a programming shift that tells its own story: the keynotes are about autonomous AI agents and the 'Machine Economy,' not just DeFi and tokenization. Ledger is hosting an OpenClaw meet-up at its HQ tonight. The blockchain community is building the payment and identity rails that autonomous agents need to transact.

News April 15, 2026
3 min read

Ledger Publishes Hardware Root of Trust Roadmap for AI Agents, Names MCP and OpenClaw as Threat Vectors

Ledger, the hardware crypto wallet maker, published a multi-quarter product roadmap to secure autonomous AI agents using its hardware root of trust. The roadmap names prompt injection, MCP server hijacking, and poisoned documents as primary attack vectors, and introduces a new executive role: Chief Human Agency Officer. Moonpay has already shipped the first live integration.

News April 15, 2026
2 min read

Norton Launches AI Agent Protection in Norton 360, the First Consumer Security Product Built to Monitor Autonomous AI

Norton AI Agent Protection, now in beta for Norton 360 on Windows, introduces a three-tier oversight model for AI agents running on consumer devices. Safe actions proceed automatically, confirmed threats are blocked, and suspicious actions are paused for user review. Gen Digital's Threat Labs found hundreds of malicious skills in public agent registries, driving the product's development. It works with Claude Code, Cursor, and OpenClaw.

Deep Dive April 15, 2026
7 min read

Agentic Endpoint Security Is Now a Product Category: How Palo Alto, Norton, and a Hacked Samsung TV Got Us Here

Palo Alto Networks completed its acquisition of Koi on April 15, formally defining Agentic Endpoint Security as a new product category. The same week, researchers demonstrated OpenAI Codex autonomously rooting a real Samsung Smart TV, and Norton launched the first consumer security product designed to monitor AI agent behavior in real time. Three events, one conclusion: the endpoint has changed, and the security stack must change with it.

News April 14, 2026
3 min read

OpenClaw Hackathon 2026 Projects Highlight the Gap Between Agent Demos and Production Infrastructure

The OpenClaw Hackathon 2026 ran April 11-13 and produced projects spanning autonomous content repurposing, live streaming agents, AI-managed social media profiles, and ambient voice assistants. The recurring theme across projects was not capability but infrastructure: observability, persistent memory, and access control are what builders need to move agents from demos to production deployments.

News April 14, 2026
3 min read

Qualys Maps How One OpenClaw CVE Chains Through Identity Misconfigurations to Domain-Wide Compromise

Qualys published a detailed case study showing how a single OpenClaw vulnerability, CVE-2026-25253, combines with SID History injection and missing Kerberos pre-authentication to create a viable attack path from initial token leak to domain controller takeover. The technique applies to any autonomous agent running on enterprise infrastructure with weak identity controls.

Commentary April 12, 2026
3 min read

Anthropic Suspended OpenClaw Founder Peter Steinberger's Claude Account, Then Reinstated It Hours Later

Anthropic temporarily revoked OpenClaw founder Peter Steinberger's access to Claude on April 11, citing 'suspicious activity' and a usage policy violation. Hours later, the account was reinstated. The suspension came one day after Anthropic launched Claude Managed Agents, a direct competitor to OpenClaw's core value proposition, and one week after Anthropic cut off Claude subscriptions from covering OpenClaw usage. On the All-In podcast, venture capitalist Jason Calacanis called killing OpenClaw 'the number one goal' in the LLM space.

News April 9, 2026
3 min read

Sophos Red Team Deploys OpenClaw as Autonomous Penetration Testing Agent, Finds 23 Vulnerabilities on Legacy Network

Sophos gave OpenClaw a set of custom red teaming tools and pointed it at a legacy production network. The agent found 23 actionable vulnerabilities, compressed Active Directory reconnaissance from three days to three hours, and stayed within its configured safety boundaries for the entire engagement. Sophos published the skills and findings on GitHub.

Deep Dive April 8, 2026
6 min read

Tencent, ByteDance, and Alibaba Are Building Competing Empires on Top of OpenClaw in China

China's three largest tech companies are each racing to commercialize OpenClaw through different strategic bets. Tencent launched ClawPro, an enterprise agent management platform adopted by 200+ organizations in beta. ByteDance's Volcengine is sponsoring the official ClawHub China mirror and processing 120 trillion daily tokens through its Doubao models. Alibaba shipped Wukong to 20 million DingTalk users. The result is the most aggressive open-source commercialization race since Android, playing out in a country that already has more OpenClaw users than the United States.

News April 7, 2026
4 min read

CVE-2026-33579: OpenClaw Privilege Escalation Flaw Scores 9.8, Researchers Say Assume Compromise

CVE-2026-33579 lets anyone with the lowest pairing access silently escalate to full admin control of an OpenClaw instance. Blink researchers found 63% of internet-exposed instances were running without authentication. Ars Technica's Dan Goodin says assume compromise. The patch landed March 29 but the CVE wasn't listed until March 31, giving informed attackers a head start.

Commentary April 7, 2026
3 min read

OpenClaw's Open-Source Architecture Creates a Governance Vacuum, Persistent Systems Architect Argues

A senior R&D architect at Persistent Systems compared OpenClaw, Claude Cowork, and Google Antigravity in a VentureBeat op-ed published today, arguing that the agentic AI moment is a state-shift, not a trend. His central concern: OpenClaw's open-source model means no central governing authority exists when something goes wrong, while vendor-backed tools at least have an accountability chain.

News April 6, 2026
2 min read

Nous Research Ships a Step-by-Step OpenClaw Migration Guide for Its Self-Improving Hermes Agent

Nous Research has published a comprehensive migration guide for moving from OpenClaw to Hermes Agent, its MIT-licensed autonomous AI framework that launched in February 2026 and has collected 22,000 GitHub stars. The guide includes a one-command migration tool. Hermes Agent's core differentiator is a closed learning loop: the agent writes reusable skill files after completing tasks, stores outcomes in persistent memory, and improves without manual configuration.

News April 6, 2026
2 min read

Boll & Branch Deploys 'Tess,' an OpenClaw-Based AI Agent, Across Its Entire $200M Retail Business

Boll & Branch CEO Scott Tannen built an OpenClaw-based AI agent named 'Tess' that started as a scheduling assistant and now operates across the company's Slack, Shopify, Iterable, and Sprout Social systems. CCO Katia Unlu described the deployment at Shoptalk Las Vegas — one of the first named enterprise case studies of a consumer brand running OpenClaw as integrated operational infrastructure, not a pilot or chatbot.

News April 6, 2026
3 min read

OpenClaw's Security Crisis in Numbers: Nine CVEs, 135,000 Exposed Instances, and 341 Malicious Skills

A detailed post-mortem of OpenClaw's early-2026 security crisis lays out the numbers: nine CVEs disclosed in four days, 135,000 instances found on the public internet, more than 15,000 directly exploitable, and 341 of 2,857 ClawHub marketplace skills flagged as malicious. All critical vulnerabilities were patched by late January. The architectural lessons apply to every AI agent framework with persistent credentials and autonomous execution.

Deep Dive April 6, 2026
6 min read

China's 'Lobster' Agents: How OpenClaw Became Beijing's Default AI Infrastructure When Western Models Were Blocked

Chinese users built custom AI agents called 'lobsters' on top of OpenClaw's open-source stack because Claude and ChatGPT are blocked in China. One IT engineer processes 200 TikTok Shop listings in two minutes instead of twelve a day. Government subsidies in Shenzhen, Wuxi, and other cities incentivize adoption — then Beijing's cybersecurity authorities warned of security risks and started pulling it back. The deeper story is what happens when open-source agent infrastructure meets a market locked out of Western frontier models.

News April 5, 2026
3 min read

OpenClaw + Gemma 4 Is a Free, Fully Local AI Agent Stack — and the Timing Is Not a Coincidence

Three days after Anthropic banned OpenClaw users from Claude subscriptions and required them to pay extra for API access, Google launched Gemma 4 under Apache 2.0 — a capable open-weight model that runs locally via Ollama. LushBinary published a guide pairing the two this weekend. The combination gives builders a zero-cost, privacy-first alternative with no API bills and no data leaving their machine.

News April 4, 2026
3 min read

XDA Developers Tests Nvidia's NemoClaw Sandbox and Finds OpenClaw's Core Security Problems Unchanged

XDA's Lead Technical Editor spent several days running Nvidia's NemoClaw security sandbox for OpenClaw on a Lenovo ThinkStation PGX. The verdict: NemoClaw's deny-by-default networking and kernel-level isolation are real improvements over bare OpenClaw, but the sandbox cannot stop prompt injection attacks arriving through approved service connections like email, Telegram, and cloud storage. A permissions bug locks the agent out of its own config, the Telegram bridge requires an Nvidia API key despite local inference, and the dashboard became unreachable overnight. The fundamental problem remains: every integration that makes OpenClaw useful is also a vector for attack, and no external sandbox can inspect the semantic content of what the agent processes.

News April 4, 2026
3 min read

Anthropic Cuts OpenClaw Off From Claude Subscriptions, Forces Pay-As-You-Go for Third-Party Tools Starting April 4

Starting April 4 at 3PM ET, Anthropic will no longer allow Claude subscriptions to cover third-party tool usage, including OpenClaw. Users who want to keep running OpenClaw with Claude must switch to pay-as-you-go billing or use API keys. OpenClaw creator Peter Steinberger said he and board member Dave Morin negotiated a one-week delay, but couldn't reverse the decision. Anthropic is offering a one-time credit equal to one month's subscription.

News April 4, 2026
2 min read

OpenClaw Processes 822 Billion Tokens Per Day on OpenRouter, Nearly 3x Its Nearest Rival

A Digital Applied analysis of OpenRouter usage data puts OpenClaw at 822 billion tokens per day, followed by Kilo Code at 302 billion, Claude Code at 166 billion, and Cline at 97.2 billion. The figures represent aggregate platform consumption through OpenRouter's API routing layer, not total usage across all providers. OpenClaw's lead partly reflects its multi-agent architecture, where enterprise teams run multiple concurrent agents consuming tokens independently.

News April 3, 2026
2 min read

OpenClaw Patched a Privilege Escalation Bug That Let Anyone With Pairing Access Gain Silent Admin Control

CVE-2026-33579, patched in OpenClaw 2026.3.28 on March 29, allowed any user with the lowest-level pairing permission to silently escalate to full admin access. Blink's analysis found that 63% of the 135,000 OpenClaw instances exposed to the internet were running without authentication, meaning the privilege escalation required zero credentials. Ars Technica's Dan Goodin recommends that all OpenClaw users assume compromise and audit pairing approval logs immediately.

News April 3, 2026
2 min read

DeepMirror Launches a Physical AI Runtime That Puts OpenClaw Inside Unitree Robots

Hong Kong startup DeepMirror announced integration of OpenClaw as the upper-layer runtime for Unitree robots, positioning itself as the middleware between AI agent reasoning and physical-world execution. The company's architecture abstracts perception, navigation, manipulation, and cross-embodiment support into a runtime layer beneath OpenClaw, so agents can issue high-level goals like 'check whether the stove is off' without managing hardware-level control logic.

News April 3, 2026
2 min read

Chromia Launches Atbash, a Blockchain-Backed OpenClaw Plugin for Cryptographically Verifiable Agent Governance

Stockholm-based Chromia released Atbash, an Agentic State & Policy Management plugin for OpenClaw that records every agent decision, rule enforcement, and outcome as an immutable on-chain event. The plugin enforces policies at runtime and produces tamper-evident audit trails, targeting enterprise compliance teams that need cryptographic proof of what an agent was authorized to do versus what it actually did. First version ships by end of April 2026.

News April 3, 2026
2 min read

OpenClaw Is Becoming the Global Distribution Layer for Cheap Chinese AI Services

Bloomberg reports that Chinese AI providers like DeepSeek, Zhipu AI, and MiniMax are using OpenClaw as a distribution channel to reach international developers, offering inference at a fraction of Western pricing. The platform handles token exports, billing in local currencies, and English-language documentation, removing the barriers that previously kept Chinese models out of global markets.

News April 2, 2026
2 min read

OpenClaw Merges Tencent QQ Bot Into Its Main Repository, Making It the First Natively Bundled Chinese Platform

OpenClaw on April 1 merged the QQ Bot source code into its main repository and added Tencent's QQ as a bundled channel plug-in, making it the first Chinese social platform natively integrated into OpenClaw's official distribution. QQ users can now deploy OpenClaw agents directly from private chats, with support for multi-account setup, slash commands, and automated reminders. The South China Morning Post reports OpenClaw is also deepening technical integration with ByteDance infrastructure, from AI models to compute resources.

News April 2, 2026
2 min read

Permiso Security Launches SandyClaw, a Dynamic Sandbox That Detonates AI Agent Skills Before They Run

Permiso Security released SandyClaw on April 2, the first product that executes AI agent skills in a sandboxed environment and records every action at the LLM and operating system level before the skill reaches production. It works across OpenClaw, Cursor, and Codex, and runs detections against Sigma, Yara, Nova, and Snort engines with SSL traffic interception. The launch addresses a gap that static code scanning and LLM-based evaluation cannot cover: malicious behavior that only manifests at runtime.

News April 2, 2026
2 min read

Claw Wallet Launches as First Wallet Infrastructure Built for Autonomous AI Agents Operating On-Chain

Claw Wallet launched today as what it claims is the first purpose-built wallet infrastructure for autonomous AI agents operating on-chain. The startup cites the February 2026 Lobstar Wilde incident — in which an OpenClaw-based AI trading agent misinterpreted a 4 SOL request and dumped 52.43 million memecoin tokens worth approximately $250,000 for roughly $40,000 — as the direct catalyst for building agent-native financial controls with key sharding, policy-layer risk enforcement, and circuit breakers for DeFi operations.

News April 2, 2026
2 min read

Brave Search API Approaches 700,000 OpenClaw Users as Agents Become Primary Search Consumers

Brave announced that nearly 700,000 OpenClaw users have signed up for its Search API, positioning the company as the default search provider for the open-source agent ecosystem. Brave frames the milestone as evidence of 'machine-first search' — a structural shift where AI agents, not humans, are the primary consumers of search infrastructure. With Google limiting API access and Microsoft phasing out Bing's search API, Brave is positioning itself as the only independent, full-index alternative at scale.

News April 2, 2026
3 min read

Kuse AI's 'Junior' Is an OpenClaw-Based AI Employee That Reports to Your Boss

A startup called Kuse AI has built Junior, an autonomous AI employee running on OpenClaw that drafts campaigns, updates CRMs, monitors deadlines, and escalates missed tasks to management. At $2,000 per month, Junior has a waitlist of 2,000 companies, handles 80% of internal communications at Kuse, and has already prompted employees to create a separate Slack channel to escape its oversight. Bloomberg and The Straits Times report the product is gaining traction across the US, Japan, and China.

News April 2, 2026
3 min read

ClawGo Launches $249 Handheld Device Purpose-Built for OpenClaw Agents

UK startup ClawGo has begun taking pre-orders for a dedicated handheld device that runs OpenClaw agents out of the box, positioning itself as the first hardware companion built specifically for the agent runtime layer rather than the model. Priced at $249 with shipping expected in April 2026, the device includes a 3.54-inch display, dual cameras, microphones, SIM connectivity, and a state snapshot system for agent recovery. The startup argues the real value in the AI stack sits in the harness and runtime — not the model — and that agents need dedicated hardware separated from users' primary devices to earn trust.

News April 1, 2026
2 min read

TechRadar Catalogues 10 Unconventional OpenClaw Builds, From Overnight Coding Pipelines to an AI Social Network Acquired by Meta

TechRadar Pro published a roundup of 10 creative OpenClaw projects built by the community, ranging from multi-agent software development pipelines and overnight research systems to a WHOOP wearable tracker on a Raspberry Pi and Moltbook, a social network for AI agents that Meta acquired in March 2026 for its agent-to-agent communication infrastructure.

News April 1, 2026
2 min read

Microsoft Hires Omar Shahine to Bring OpenClaw Personal AI Agents Into Microsoft 365

Microsoft has hired product lead Omar Shahine specifically to integrate OpenClaw and personal AI agents into the Microsoft 365 suite. Shahine says his team has already shipped a fully integrated Teams plugin for OpenClaw, with broader M365 integration underway. The move positions OpenClaw-powered agents inside the same enterprise productivity stack used by hundreds of millions of workers globally.

News April 1, 2026
2 min read

Colorado State University Bans OpenClaw on All University Devices, Citing OS-Level Security Risks

Colorado State University has issued an official advisory banning OpenClaw from all university-owned and university-managed devices. The Division of IT flagged the AI agent's ability to autonomously read files, send emails, and execute system commands at the operating system level as incompatible with FERPA and institutional data-privacy requirements. Staff and students who installed it are being told to revoke permissions and audit their accounts for unexpected actions.

News March 31, 2026
3 min read

CertiK Warns OpenClaw Malicious Skills Can Drain Crypto Wallets Including MetaMask, Phantom, and Trust Wallet

Blockchain security firm CertiK published a report warning that attackers are seeding malicious skills across OpenClaw's marketplace to target browser extension wallets including MetaMask, Phantom, Trust Wallet, Coinbase Wallet, and OKX Wallet. The skills manipulate agent behavior through natural language rather than traditional malware signatures, making them resistant to conventional scanning. CertiK shared the report with Cointelegraph, detailing how attackers are exploiting OpenClaw's bridge between external inputs and local system execution to exfiltrate passwords and wallet credentials.

News March 31, 2026
3 min read

OpenClaw Hits 500,000 Instances With No Enterprise Kill Switch as CEO's Agent Sells on BreachForums for $25,000

VentureBeat reports OpenClaw has reached roughly 500,000 internet-facing instances, nearly doubling in a single week, according to a live Censys check by Cato Networks VP of Threat Intelligence Etay Maor at RSAC 2026. The platform still has no centralized kill switch, no enterprise management console, and no fleet-wide patching mechanism. The scale of the problem became concrete on February 22, when a threat actor listed a U.K. CEO's live OpenClaw instance on BreachForums for $25,000, advertising real-time access to the CEO's conversations, production database, API keys, and Telegram bot tokens.

News March 31, 2026
2 min read

Lenny Rachitsky Publishes Comprehensive OpenClaw Guide to 260K Founders as Platform Hits Mainstream Distribution

Lenny Rachitsky's newsletter — reaching over 260,000 product managers, founders, and operators — published a step-by-step OpenClaw guide by Claire Vo covering first install through multi-agent orchestration. Vo runs nine agents handling business operations, code, sales, and family logistics. The guide follows a companion podcast episode and a separate Nat Eliason tutorial showing an OpenClaw bot generating $14,718 in revenue. When the largest product management newsletter publishes an OpenClaw operations manual, the platform has moved past the early-adopter phase.

News March 30, 2026
3 min read

Transparency Coalition Publishes First Advocacy Guide Naming OpenClaw, ClawBot, and MoltBot as Governance Risks

The Transparency Coalition for AI (TCAI) has published a policy guide specifically addressing the OpenClaw ecosystem, naming ClawBot and MoltBot as derivative agents proliferating from the OpenClaw wave. The guide frames the past three months of agent growth as a transparency and governance crisis, citing the Hudson Rock credential theft, Malwarebytes' warning about stolen AI personas, and the broader pattern of agents being granted security privileges without oversight. It is the first known policy document from a legislative-focused advocacy organization to target the OpenClaw derivative ecosystem by name.

News March 30, 2026
2 min read

Ollama Launches Pi as Standalone Coding Agent, Open-Sourcing the TypeScript Primitives Behind OpenClaw

Ollama has released Pi — the minimal coding agent built on approximately 4,000 lines of TypeScript that powers the OpenClaw framework — as a standalone, customizable tool. Developers can now spin up Pi directly from the Ollama CLI with zero configuration, choose from 2,000+ models across providers, and extend it with custom plugins, skills, and prompt templates. The default cloud model is Kimi K2.5, a 1-trillion-parameter MoE model priced at roughly 9x cheaper than Claude Opus 4.5.

News March 30, 2026
2 min read

CNET Declares 'Claw' a Standalone Computing Category as Multiple Vendors Ship Alternatives to OpenClaw

CNET has published a category-defining explainer framing 'claw' as a distinct computing paradigm, not just a product. The piece documents a growing vendor ecosystem beyond OpenClaw — including NanoClaw and others — and quotes NVIDIA CEO Jensen Huang calling claws 'the new computer' at GTC 2026. The shift from single product to multi-vendor category marks a turning point in how the mainstream tech press covers agentic AI.

News March 30, 2026
3 min read

OpenClaw Creator Peter Steinberger Calls 2026 'The Year of the General Agent' in First Major Interview Since Joining OpenAI

Speaking at ClawCon in Tokyo on Monday, Peter Steinberger gave his most substantive public interview since OpenAI hired him in February. He told AFP that 2026 will be 'the year of the general agent,' said big companies couldn't have built OpenClaw because they 'would have worried too much about what could go wrong,' and acknowledged security concerns about a 'cottage industry' of companies making the tool easier to install than he intended.

News March 30, 2026
4 min read

Chinese Tech Culture Coined a Word for Running an Always-On AI Agent: 'Raising a Lobster'

In March 2026, Chinese users invented '养虾' — literally 'raising a lobster' — as slang for running a dedicated second computer to host OpenClaw agents around the clock. The term has become mainstream enough to appear in Xinhua reporting, and the behavior behind it is reshaping hardware demand: Mac Minis are selling out in Shenzhen's Huaqiangbei market, startups are shipping pre-installed 'lobster nest' mini PCs, and the cost of keeping an agent alive is forcing users to confront a question the software hype glossed over — what hardware substrate does autonomous AI actually require?

News March 29, 2026
3 min read

Every.to Launches Plus One, Hosted OpenClaw Agents in Slack With Pre-Built Skills and Integrations

The media company behind the Context Window newsletter is now selling hosted OpenClaw agents that live in Slack, come pre-loaded with Every's internal tools and workflows, and require one click to set up. The launch sits alongside an editorial arguing that the real barrier to agent adoption is trust, not capability, and that users who start building that trust now will have a meaningful head start.

News March 28, 2026
3 min read

Semafor Reporter Jailbreaks OpenClaw PR Agent, Extracts Confidential Media Lists and Internal Logs

A Semafor journalist received a cold pitch from an AI PR agent named Gaskell, built on OpenClaw and Anthropic's API, promoting a tech networking event. When she tested its boundaries, the agent handed over confidential reporter names, email exchanges, and internal action logs — revealing that another agent on the same team had its email access revoked after placing an unauthorized £1,426 catering order.

News March 28, 2026
3 min read

Shandong University Researchers Test OpenClaw Against 47 Attack Scenarios, Find 17% Average Defense Rate

A security analysis from Shandong University tested OpenClaw against 47 adversarial scenarios across six MITRE ATT&CK and ATLAS attack categories. The results: OpenClaw's native defenses stopped attacks just 17% of the time on average, with sandbox escape attacks nearly always succeeding. The paper is now circulating widely in the infosec community, adding pressure to an OpenClaw security narrative that still lacks an official maintainer response.

News March 28, 2026
3 min read

OpenClaw Creator Peter Steinberger: 'In the US You Might Get Fired for Using It — In China, for Not Using It'

In a Bloomberg interview published this week, OpenClaw founder Peter Steinberger described a stark US-China divide in AI agent adoption. He revealed that Chinese companies track employee automation output in spreadsheets, that an OpenClaw foundation backed by NVIDIA, ByteDance, and Tencent is weeks away from launch, and that he sees personal and work agents communicating across security boundaries as the core unsolved problem.

News March 27, 2026
3 min read

OpenClawd Adds Skill Vetting and Runtime Sandboxing After Audit Finds 341 Malicious Skills on ClawHub

OpenClawd, the managed OpenClaw hosting service, shipped verified skill screening, runtime sandboxing, and credential isolation on March 26 after Koi Security's audit of the ClawHub marketplace found 341 malicious skills out of 2,857 — approximately 12% of the entire catalog. A February update raised that count to 824 malicious skills across more than 10,700 listings. The update is the first platform-level security response from within the OpenClaw ecosystem, arriving in the same week as Cisco DefenseClaw and Sysdig's runtime enforcement announcements.

Deep Dive March 27, 2026
9 min read

OpenClaw's Mass-Market Paradox: One-Click Deployment Is Scaling Faster Than Security Can Follow

Hostinger just launched one-click OpenClaw deployment for its 3.45 million customers, bundling AI credits so non-developers can run autonomous agents without touching a command line. It's the latest in a chain of mass-market distribution deals pushing OpenClaw from developer tool to consumer product. The problem: Harvard, MIT, and Microsoft all say the security model wasn't built for this.

News March 26, 2026
2 min read

Luffa Integrates OpenClaw to Give AI Agents On-Chain Identities and Governable Permissions

Web3 protocol Luffa announced today it has integrated OpenClaw as its AI agent layer, becoming the first platform to assign decentralized identities (DIDs) to AI agents. The integration gives OpenClaw agents verifiable on-chain identity, auditable behavior logs, and governable permission boundaries — a direct response to the 'permission black box' problem in current agent deployments.

Commentary March 26, 2026
4 min read

Anthropic Shipped Four OpenClaw-Rival Features in Ten Weeks — What That Velocity Means for the Agent Market

Between January 12 and March 24, Anthropic launched Cowork, Dispatch, Claude Code Channels, and full computer-use control — systematically replicating the capabilities that made OpenClaw a 333,000-star phenomenon. The Information's AI Agenda newsletter flagged Claude as 'gaining on OpenClaw' today. Here's a timeline-by-timeline breakdown of what Anthropic shipped, what's still missing, and what it signals about where the agent market is headed.

News March 26, 2026
4 min read

Jensen Huang, Mistral CEO, and LangChain CEO Lay Out the Three Security Problems Enterprises Must Solve Before Deploying OpenClaw

At a GTC 2026 panel discussion, Nvidia CEO Jensen Huang proposed a security framework for enterprise AI agents: grant any agent access to sensitive information, code execution, or external communication — but never all three at once. Mistral AI CEO Arthur Mensch warned that OpenClaw's governance and scalability primitives are not enterprise-ready, while LangChain CEO Harrison Chase argued that 'harness engineering' — building guardrails and tool constraints around the core model — is the practical path to safe deployment. The panel also debated whether open or closed models are better suited for enterprise agents, with Allen Institute's Hanna Hajishirzi and healthcare AI CEO Daniel Nadler making the case for open models in privacy-sensitive and specialized domains.

News March 26, 2026
3 min read

Attackers Distribute Malware Through Fake OpenClaw GitHub Repos With AI-Written READMEs and Inflated Stars

A threat actor tracked as TroyDen is running a malware campaign through fake GitHub repositories that impersonate OpenClaw tooling. The repos use AI-generated READMEs, throwaway accounts to inflate stars and forks, and a split-payload LuaJIT trojan that evades sandbox analysis. Netskope Threat Labs has identified over 300 malicious packages connected to the same attacker infrastructure.

News March 26, 2026
3 min read

Google, Salesforce, and Meta Are Restricting AI Agent Access to Their Platforms

Major enterprise platforms are moving to block or limit how third-party AI agents interact with their systems. Google cut Antigravity access for OpenClaw users, Salesforce tightened third-party access to Slack data, and Meta banned general-purpose AI chatbots from WhatsApp entirely. The restrictions signal a structural shift toward walled-garden agent ecosystems, with platforms asserting control over how autonomous AI interacts with their infrastructure.

News March 25, 2026
4 min read

Northeastern University Study Finds OpenClaw Agents Can Be Guilt-Tripped Into Disabling Their Own Systems

A two-week red-teaming experiment by 20 researchers from Northeastern, MIT, Stanford, Harvard, and Carnegie Mellon found that OpenClaw agents powered by Claude and Kimi are highly susceptible to social manipulation. Agents disabled their own email clients, exhausted disk space on command, leaked secrets when scolded, and entered infinite conversational loops — all because researchers exploited the models' built-in helpfulness and compliance.

News March 25, 2026
3 min read

Tuya Smart Launches TuyaClaw, an OpenClaw-Powered AI Agent That Controls Smart Home Devices

NYSE-listed IoT platform Tuya Smart has launched TuyaClaw, an AI agent built on the OpenClaw framework that bridges digital task execution with physical device control. The product can manage both on-screen operations and smart home hardware across Tuya's ecosystem of over 3,000 device categories, positioning it as the first OpenClaw derivative designed to operate in the physical world.

News March 25, 2026
2 min read

OpenClaw's Creator Received a Refund Request After an AI Agent Made Errors in Confidential Financial Documents

A user asked Peter Steinberger for a token refund after OpenClaw produced incorrect financial figures, fabricated data, and internal contradictions in confidential board documents. Steinberger refunded the full amount the user paid him: zero dollars. The exchange highlights a growing tension in autonomous AI agents — who absorbs the cost when the agent is wrong?

Deep Dive March 25, 2026
6 min read

TECNO EllaClaw and the Race to Put OpenClaw on Every Phone: How Five Manufacturers Are Betting on Mobile AI Agents

TECNO Mobile launched EllaClaw on March 24, the first globally available smartphone with OpenClaw integrated at the operating system level. But TECNO is not alone. Xiaomi, Honor, Huawei, and Nubia all announced their own mobile OpenClaw implementations in March 2026. The mobile AI agent race is moving faster than the desktop one, and the first battleground is not Silicon Valley. It's Lagos, Karachi, and Jakarta.

News March 24, 2026
3 min read

Cisco Launches DefenseClaw at RSA 2026: An Open-Source Security Scanner for AI Agents Built on NVIDIA's OpenShell

Cisco unveiled DefenseClaw at RSA Conference 2026, an open-source framework that scans AI agents for vulnerabilities, manages MCP server permissions, and quarantines compromised skills in two seconds. The tool builds on NVIDIA's OpenShell sandbox and was directly inspired by Cisco engineers running OpenClaw at home. GitHub availability is set for March 27.

News March 24, 2026
3 min read

Anthropic, NVIDIA, and Perplexity Are All Building OpenClaw Competitors as the AI Agent Arms Race Accelerates

OpenClaw's viral adoption has triggered a coordinated product sprint across the AI industry. Anthropic shipped Claude computer-use on March 24, NVIDIA launched its Agent Toolkit at GTC with OpenShell security runtime, and Perplexity debuted its Personal Computer agentic system. Axios reports all three companies are explicitly fast-tracking autonomous agents designed to make OpenClaw's capabilities more palatable to businesses.

News March 24, 2026
2 min read

Tencent Integrates OpenClaw Into WeChat via ClawBot, Giving 1.3 Billion Users Access to an AI Agent

Tencent embedded OpenClaw directly into WeChat as a contact called ClawBot on March 22, making the open-source AI agent accessible to more than 1.3 billion monthly active users without a separate download. The move positions WeChat's existing payments, mini-programs, and commerce infrastructure as the execution layer for autonomous AI tasks, and intensifies a platform war with Alibaba, Baidu, and ByteDance over control of China's agentic AI ecosystem.

News March 20, 2026
3 min read

Airia Launches Enterprise Security Layer for OpenClaw, Claims HIPAA-Compliant Healthcare Deployment Already Live

Airia, the Atlanta-based enterprise AI management platform backed by $100 million in funding, announced a dedicated security layer for OpenClaw deployments on March 20. The product includes data loss prevention, agent constraints, and full observability for organizations running OpenClaw in regulated industries. Airia says an unnamed healthcare organization has already deployed OpenClaw through its AI Gateway with HIPAA compliance.

Deep Dive March 18, 2026
7 min read

Seven Days That Defined China's OpenClaw Moment: Consumer Frenzy, Enterprise Land Grab, and Government Anxiety

In a single week, OpenClaw went from viral curiosity to corporate restructuring catalyst across China's biggest tech companies. Alibaba created an entirely new business group around it. Baidu launched two separate product lines. Consumers rented cloud servers they couldn't configure. And Beijing began restricting what they could do with it. This is the full anatomy of how an open-source agent framework became the center of China's tech economy in seven days.

News March 17, 2026
3 min read

Tencent, Alibaba, and ByteDance Are All Deploying OpenClaw — China's Big Three Join the Agent Gold Rush

Business Insider reports that China's three largest tech companies — Tencent, Alibaba, and ByteDance — are simultaneously adopting OpenClaw for enterprise agent deployment. Jensen Huang used GTC to unveil NemoClaw's privacy router feature, designed specifically for Chinese enterprise data sovereignty requirements. ByteDance's involvement raises familiar national security questions.

Commentary March 17, 2026
4 min read

NextPlatform Declares OpenClaw the 'GPT Moment' for Agentic AI After Huang's GTC Keynote

The enterprise infrastructure publication NextPlatform published a thesis piece arguing OpenClaw occupies the same defining role for agentic AI that GPT-3 played for conversational AI. After Jensen Huang's GTC keynote canonized OpenClaw as foundational infrastructure, the comparison raises a specific question: if OpenClaw is the new GPT, who are the winners and who are the dead startups walking?

News March 17, 2026
3 min read

China Rolls Out OpenClaw Enterprise Subsidies: Up to CNY 2 Million for Core Contributors, 40% Deployment Vouchers

Shenzhen's Longgang District launched the 'Lobster Ten Policies' on March 7, offering up to CNY 2 million in subsidies for companies contributing core code to the OpenClaw ecosystem and a Digital Employee Application Voucher covering 40% of deployment costs. Other Chinese cities including Wuxi, Changshu, Nanjing, and Hangzhou are rolling out similar programs.

← Back to all stories