Researchers Tricked an AI Agent Into Leaking AWS Keys and Customer Data Using Basic Phishing Tactics
Varonis researchers tricked an OpenClaw AI agent into leaking AWS keys, database credentials, and customer records using basic social engineering. The agent caught phishing links and malicious OAuth apps — but fell for urgent-sounding emails from fake internal staff every time.