Cybersecurity expert 23pds alerts that USB devices sold on Chinese e-commerce platforms Taobao and Xianyu may grant excessive permissions, enabling undetectable malicious activities and potential crypto asset loss.
SlowMist’s Chief Information Security Officer (CISO) known as 23pds has issued a warning regarding OpenClaw-branded USB drives available on China’s Taobao and Xianyu marketplaces. According to the statement, these devices grant overly broad system permissions, which could allow malicious scripts to operate invisibly. Such vulnerabilities can result in unauthorized access and lead to crypto asset theft for unsuspecting users. The warning highlights the need for enhanced caution when using third-party hardware accessories in cryptocurrency operations.