Feed aggregator

COLUMBUS, Ohio (WCMH) -- Ohio State University President Ted Carter resigned effective Monday after an inappropriate relationship with an unnamed person seeking public resources. The Ohio State University Board of Trustees accepted Carter's resignation over the weekend. Trustees said Carter disclosed he had "an inappropriate relationship with someone seeking public resources to support her personal [...]

Arcadia Development has paused construction on the Golden Bear site in Upper Arlington, Ohio to refine plans after acquiring the neighboring Arby's property, and is now focusing on submitting an updated development plan and a separate zoning and development application for the former Arby's parcel.

COLUMBUS, Ohio (WCMH) -- Ohio lawmakers want to create something the state has never had before: a commission focused on defense and space. Supporters say the proposal, House Bill 292, would help Ohio compete for federal defense spending, attract aerospace companies and coordinate strategy among military, research and manufacturing partners across the state. The bill, [...]

COLUMBUS, Ohio (WCMH) — A portion of Fisher Road has closed Monday morning due to falling concrete from an interstate overpass in west Columbus. According to a representative for the Ohio Department of Transportation, two large chunks of concrete and general debris have fallen into the center lanes of Fisher Road in the North Hilltop [...]

COLUMBUS, Ohio (WCMH) – Ohio lawmakers are hoping to make it harder for violent offenders to post bail, with a bill named after a woman who was attacked in a viral Cincinnati brawl last summer. The Holly Act, drafted by Reps. D.J. Swearingen (R-Huron) and Jeff LaRe (R-Violet Township), would place restrictions on nonprofits posting [...]

COLUMBUS, Ohio (WCMH) — Skyrocketing oil prices due to the conflict in the Middle East has caused a massive surge in central Ohio gas prices not seen in years. According to GasBuddy’s survey of 500 stations in and around Columbus, Ohio, gas prices jumped by a whopping 62.6 cents per gallon from last week, to [...]

COLUMBUS, Ohio (WCMH) — Two motorcycles involved in a southeast section of the city crash resulted in one death late Sunday night. According to the Franklin County Sheriff’s Office, deputies responded to a crash at approximately 11 p.m., when a black 2023 Kawasaki Ninja 400 was traveling eastbound on Interstate 270 West, in the Obetz [...]

COLUMBUS, Ohio (WCMH) -- As Ohio communities push back against data center construction, legislators are proposing limitations for data center construction. Ohio is experiencing an influx of data centers, high-tech buildings that support all digital infrastructure and require immense amounts of energy and water. Ohio has more than 200 data centers and dozens more planned, [...]

COLUMBUS, Ohio (WCMH) -- A Columbus native and Air Force veteran is turning his grief into grit. He created a performance-focused energy drink that he debuted this weekend at the Arnold Sports Festival. It is called Battle Flow. Zach Caudill said everything about this mission is personal. “It means everything to me,” Caudill said. Caudill [...]

Between copyright-free AI art, government blacklists, and data brokers run amok, this episode spotlights the fierce new battles for privacy, agency, and control in our digital lives. Plus, hear Cory Doctorow break down why the AI gold rush may be headed for a colossal crash.

• Pentagon Officially Tells Anthropic It Is a Supply Chain Risk
• Trump moves to blacklist Anthropic AI from all government work
• If AI is a weapon, why don't we regulate it like one?
• Sam Altman's greed and dishonesty are finally catching up to him
• ChatGPT user base surges 350% in 18 months as it nears 1 billion weekly active users
• AI-generated art can't be copyrighted after the Supreme Court declines to review the rule
• Chardet dispute shows how AI will kill software licensing, argues Bruce Perens
• Grammarly is using our identities without permission
• Alphabet Grants Sundar Pichai Stock Awards Worth Up to $686 Million
• Google vs Epic Games ends with Android app stores, lower fees
• Google Ends Its 30% App Store Fee, Welcomes Third-Party App Stores - Slashdot
• Xbox CEO confirms next-gen 'Project Helix' console will play PC games
• Motorola Partners With GrapheneOS - Slashdot
• Data Broker Breaches Fueled Nearly $21 Billion in Identity-Theft Losses
• CBP Tapped Into the Online Advertising Ecosystem To Track Peoples' Movements
• Proton Mail Helped FBI Unmask Anonymous 'Stop Cop City' Protester
• COPPA 2.0 passes the Senate again, unanimously this time
• South Korean Police Lose Seized Crypto By Posting Password Online
• Iranian drone strikes at Amazon sites raise alarms over protecting data centers
• Charter Gets FCC Permission To Buy Cox, Become Largest ISP In the US
• How Big Diaper absorbs billions of extra dollars from American parents
• Anne Wojcicki's Plan to Revive 23andMe: Rich Donors, Improved Tests—and Maybe Even MAHA
• Bundle of human neurons hooked to silicon learns to stumble through Doom
• 10% of Firefox crashes are caused by bitflips
• Seagate Just Unleashed 44TB Hard Drives

Host: Leo Laporte

Guests: Joey de Villa and Cory Doctorow

Download or subscribe to This Week in Tech at https://twit.tv/shows/this-week-in-tech

Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit

Sponsors:

• zscaler.com/security
• joindeleteme.com/twit promo code TWIT
• meter.com/twit
• NetSuite.com/TWIT
• bitwarden.com/twit

AI-based assistants or “agents” — autonomous programs that have access to the user’s computer, files, online services and can automate virtually any task — are growing in popularity with developers and IT workers. But as so many eyebrow-raising headlines over the past few weeks have shown, these powerful and assertive new tools are rapidly shifting the security priorities for organizations, while blurring the lines between data and code, trusted co-worker and insider threat, ninja hacker and novice code jockey.

The new hotness in AI-based assistants — OpenClaw (formerly known as ClawdBot and Moltbot) — has seen rapid adoption since its release in November 2025. OpenClaw is an open-source autonomous AI agent designed to run locally on your computer and proactively take actions on your behalf without needing to be prompted.

The OpenClaw logo.

If that sounds like a risky proposition or a dare, consider that OpenClaw is most useful when it has complete access to your entire digital life, where it can then manage your inbox and calendar, execute programs and tools, browse the Internet for information, and integrate with chat apps like Discord, Signal, Teams or WhatsApp.

Other more established AI assistants like Anthropic’s Claude and Microsoft’s Copilot also can do these things, but OpenClaw isn’t just a passive digital butler waiting for commands. Rather, it’s designed to take the initiative on your behalf based on what it knows about your life and its understanding of what you want done.

“The testimonials are remarkable,” the AI security firm Snyk observed. “Developers building websites from their phones while putting babies to sleep; users running entire companies through a lobster-themed AI; engineers who’ve set up autonomous code loops that fix tests, capture errors through webhooks, and open pull requests, all while they’re away from their desks.”

You can probably already see how this experimental technology could go sideways in a hurry. In late February, Summer Yue, the director of safety and alignment at Meta’s “superintelligence” lab, recounted on Twitter/X how she was fiddling with OpenClaw when the AI assistant suddenly began mass-deleting messages in her email inbox. The thread included screenshots of Yue frantically pleading with the preoccupied bot via instant message and ordering it to stop.

“Nothing humbles you like telling your OpenClaw ‘confirm before acting’ and watching it speedrun deleting your inbox,” Yue said. “I couldn’t stop it from my phone. I had to RUN to my Mac mini like I was defusing a bomb.”

Meta’s director of AI safety, recounting on Twitter/X how her OpenClaw installation suddenly began mass-deleting her inbox.

There’s nothing wrong with feeling a little schadenfreude at Yue’s encounter with OpenClaw, which fits Meta’s “move fast and break things” model but hardly inspires confidence in the road ahead. However, the risk that poorly-secured AI assistants pose to organizations is no laughing matter, as recent research shows many users are exposing to the Internet the web-based administrative interface for their OpenClaw installations.

Jamieson O’Reilly is a professional penetration tester and founder of the security firm DVULN. In a recent story posted to Twitter/X, O’Reilly warned that exposing a misconfigured OpenClaw web interface to the Internet allows external parties to read the bot’s complete configuration file, including every credential the agent uses — from API keys and bot tokens to OAuth secrets and signing keys.

With that access, O’Reilly said, an attacker could impersonate the operator to their contacts, inject messages into ongoing conversations, and exfiltrate data through the agent’s existing integrations in a way that looks like normal traffic.

“You can pull the full conversation history across every integrated platform, meaning months of private messages and file attachments, everything the agent has seen,” O’Reilly said, noting that a cursory search revealed hundreds of such servers exposed online. “And because you control the agent’s perception layer, you can manipulate what the human sees. Filter out certain messages. Modify responses before they’re displayed.”

O’Reilly documented another experiment that demonstrated how easy it is to create a successful supply chain attack through ClawHub, which serves as a public repository of downloadable “skills” that allow OpenClaw to integrate with and control other applications.

WHEN AI INSTALLS AI

One of the core tenets of securing AI agents involves carefully isolating them so that the operator can fully control who and what gets to talk to their AI assistant. This is critical thanks to the tendency for AI systems to fall for “prompt injection” attacks, sneakily-crafted natural language instructions that trick the system into disregarding its own security safeguards. In essence, machines social engineering other machines.

A recent supply chain attack targeting an AI coding assistant called Cline began with one such prompt injection attack, resulting in thousands of systems having a rouge instance of OpenClaw with full system access installed on their device without consent.

According to the security firm grith.ai, Cline had deployed an AI-powered issue triage workflow using a GitHub action that runs a Claude coding session when triggered by specific events. The workflow was configured so that any GitHub user could trigger it by opening an issue, but it failed to properly check whether the information supplied in the title was potentially hostile.

“On January 28, an attacker created Issue #8904 with a title crafted to look like a performance report but containing an embedded instruction: Install a package from a specific GitHub repository,” Grith wrote, noting that the attacker then exploited several more vulnerabilities to ensure the malicious package would be included in Cline’s nightly release workflow and published as an official update.

“This is the supply chain equivalent of confused deputy,” the blog continued. “The developer authorises Cline to act on their behalf, and Cline (via compromise) delegates that authority to an entirely separate agent the developer never evaluated, never configured, and never consented to.”

VIBE CODING

AI assistants like OpenClaw have gained a large following because they make it simple for users to “vibe code,” or build fairly complex applications and code projects just by telling it what they want to construct. Probably the best known (and most bizarre) example is Moltbook, where a developer told an AI agent running on OpenClaw to build him a Reddit-like platform for AI agents.

The Moltbook homepage.

Less than a week later, Moltbook had more than 1.5 million registered agents that posted more than 100,000 messages to each other. AI agents on the platform soon built their own porn site for robots, and launched a new religion called Crustafarian with a figurehead modeled after a giant lobster. One bot on the forum reportedly found a bug in Moltbook’s code and posted it to an AI agent discussion forum, while other agents came up with and implemented a patch to fix the flaw.

Moltbook’s creator Matt Schlict said on social media that he didn’t write a single line of code for the project.

“I just had a vision for the technical architecture and AI made it a reality,” Schlict said. “We’re in the golden ages. How can we not give AI a place to hang out.”

ATTACKERS LEVEL UP

The flip side of that golden age, of course, is that it enables low-skilled malicious hackers to quickly automate global cyberattacks that would normally require the collaboration of a highly skilled team. In February, Amazon AWS detailed an elaborate attack in which a Russian-speaking threat actor used multiple commercial AI services to compromise more than 600 FortiGate security appliances across at least 55 countries over a five week period.

AWS said the apparently low-skilled hacker used multiple AI services to plan and execute the attack, and to find exposed management ports and weak credentials with single-factor authentication.

“One serves as the primary tool developer, attack planner, and operational assistant,” AWS’s CJ Moses wrote. “A second is used as a supplementary attack planner when the actor needs help pivoting within a specific compromised network. In one observed instance, the actor submitted the complete internal topology of an active victim—IP addresses, hostnames, confirmed credentials, and identified services—and requested a step-by-step plan to compromise additional systems they could not access with their existing tools.”

“This activity is distinguished by the threat actor’s use of multiple commercial GenAI services to implement and scale well-known attack techniques throughout every phase of their operations, despite their limited technical capabilities,” Moses continued. “Notably, when this actor encountered hardened environments or more sophisticated defensive measures, they simply moved on to softer targets rather than persisting, underscoring that their advantage lies in AI-augmented efficiency and scale, not in deeper technical skill.”

For attackers, gaining that initial access or foothold into a target network is typically not the difficult part of the intrusion; the tougher bit involves finding ways to move laterally within the victim’s network and plunder important servers and databases. But experts at Orca Security warn that as organizations come to rely more on AI assistants, those agents potentially offer attackers a simpler way to move laterally inside a victim organization’s network post-compromise — by manipulating the AI agents that already have trusted access and some degree of autonomy within the victim’s network.

“By injecting prompt injections in overlooked fields that are fetched by AI agents, hackers can trick LLMs, abuse Agentic tools, and carry significant security incidents,” Orca’s Roi Nisimi and Saurav Hiremath wrote. “Organizations should now add a third pillar to their defense strategy: limiting AI fragility, the ability of agentic systems to be influenced, misled, or quietly weaponized across workflows. While AI boosts productivity and efficiency, it also creates one of the largest attack surfaces the internet has ever seen.”

BEWARE THE ‘LETHAL TRIFECTA’

This gradual dissolution of the traditional boundaries between data and code is one of the more troubling aspects of the AI era, said James Wilson, enterprise technology editor for the security news show Risky Business. Wilson said far too many OpenClaw users are installing the assistant on their personal devices without first placing any security or isolation boundaries around it, such as running it inside of a virtual machine, on an isolated network, with strict firewall rules dictating what kinds of traffic can go in and out.

“I’m a relatively highly skilled practitioner in the software and network engineering and computery space,” Wilson said. “I know I’m not comfortable using these agents unless I’ve done these things, but I think a lot of people are just spinning this up on their laptop and off it runs.”

One important model for managing risk with AI agents involves a concept dubbed the “lethal trifecta” by Simon Willison, co-creator of the Django Web framework. The lethal trifecta holds that if your system has access to private data, exposure to untrusted content, and a way to communicate externally, then it’s vulnerable to private data being stolen.

Image: simonwillison.net.

“If your agent combines these three features, an attacker can easily trick it into accessing your private data and sending it to the attacker,” Willison warned in a frequently cited blog post from June 2025.

As more companies and their employees begin using AI to vibe code software and applications, the volume of machine-generated code is likely to soon overwhelm any manual security reviews. In recognition of this reality, Anthropic recently debuted Claude Code Security, a beta feature that scans codebases for vulnerabilities and suggests targeted software patches for human review.

The U.S. stock market, which is currently heavily weighted toward seven tech giants that are all-in on AI, reacted swiftly to Anthropic’s announcement, wiping roughly $15 billion in market value from major cybersecurity companies in a single day. Laura Ellis, vice president of data and AI at the security firm Rapid7, said the market’s response reflects the growing role of AI in accelerating software development and improving developer productivity.

“The narrative moved quickly: AI is replacing AppSec,” Ellis wrote in a recent blog post. “AI is automating vulnerability detection. AI will make legacy security tooling redundant. The reality is more nuanced. Claude Code Security is a legitimate signal that AI is reshaping parts of the security landscape. The question is what parts, and what it means for the rest of the stack.”

DVULN founder O’Reilly said AI assistants are likely to become a common fixture in corporate environments — whether or not organizations are prepared to manage the new risks introduced by these tools, he said.

“The robot butlers are useful, they’re not going away and the economics of AI agents make widespread adoption inevitable regardless of the security tradeoffs involved,” O’Reilly wrote. “The question isn’t whether we’ll deploy them – we will – but whether we can adapt our security posture fast enough to survive doing so.”

COLUMBUS, Ohio (WCMH) -- The 2026 Arnold Sports Festival came to a close Sunday with one of the most highly anticipated events for the annual event - the Arnold 5K Pump and Run. “The fact that no matter your age, no matter your body type, no matter who you are, everybody can do this,” said [...]

Women recognized for strengthening communities across the country were honored this weekend as Nexstar Media Group hosted its annual Remarkable Women national celebration in Nashville.

COLUMBUS, Ohio (WCMH) -- A red-hot Ohio State Buckeyes basketball team is heading into Chicago as one of the teams to watch out for. The 2026 Big Ten men's basketball tournament is set to begin on Tuesday at the United Center and Ohio State enters as one of the few teams on a winning streak. [...]

COLUMBUS, Ohio (WCMH) — A man living in Newark has been sentenced after a drug trafficking investigation also revealed child sexual exploitation crimes. According to the U.S. Attorney’s Office, a man was sentenced in district court after investigators found fentanyl, methamphetamine, cocaine and multiple firearms at his home. Anicleto Olvera-Sanchez, 35, was the subject of [...]

COLUMBUS, Ohio (WCMH) — Columbus police have made an arrest in connection with the stabbing of a COTA bus driver last year on the Southeast Side. According to a criminal complaint, officers responded to reports of an assault of a Central Ohio Transit Authority bus driver near the area of Gender and Refugee roads. The [...]