China's National Industrial Information Security Development Research Center Issues Risk Warning on OpenClaw Applications in Industrial Sector

Gate News: On March 12, the China Industrial Information Security Development Research Center released a risk warning notice regarding the application of OpenClaw in the industrial sector. The notice states that OpenClaw is currently accelerating its deployment in areas such as industrial design, manufacturing, and operations management. Due to features like blurred trust boundaries, multi-channel unified access, flexible large model invocation, and dual-mode persistent memory, without effective access control strategies or security audit mechanisms, it could be maliciously hijacked through command induction, supply chain tampering, and other methods, leading to control system failures and sensitive information leaks. Specific risks include: unauthorized access and production control risks in industrial hosts, leakage of industrial sensitive information, and expanded attack surfaces and amplified attack effects for industrial enterprises. The notice recommends that industrial companies follow relevant requirements such as the “Industrial Control System Network Security Protection Guidelines” and the “Industrial Internet Security Classification and Grading Management Measures,” and refer to the “Six Do’s and Six Don’ts” advice published by the Ministry of Industry and Information Technology’s cybersecurity threat and vulnerability information sharing platform (NVDB). When deploying and applying OpenClaw, strengthen security measures, including enhancing access control management, reinforcing network boundary isolation, and promptly applying security patches.