ClawJacked: When Visiting a Website Hijacks Your AI Agent

ClawJacked: When Visiting a Website Hijacks Your AI Agent Your AI agent has access to your shell, your files, your calendar, your email. It can execute commands, read secrets, and take actions across your entire digital life. Now imagine a random website you visit takes full control of it. No malware. No phishing. Just a WebSocket connection to localhost. That's ClawJacked. The Rise of Autonomous AI Agents 2026 is the year AI agents went from chatbots to autonomous operators. OpenClaw — originally called Clawdbot before Anthropic forced a rebrand — became one of the fastest-growing GitHub repos in history, hitting 135,000 stars in weeks. Unlike traditional AI assistants that answer questions and forget, OpenClaw is different. It persists. It acts. It runs shell commands, manages files, browses the web, sends emails, and orchestrates your digital life through a local gateway server. The architecture is straightforward: a WebSocket gateway runs on your machine, AI agent nodes connect to