This week on The Awareness Angle, we cover hundreds of exposed Clawdbot and Moltbot AI agent gateways leaking credentials and private chats, a new malware service selling guaranteed phishing extensions through the Chrome Web Store, and sensitive government documents uploaded to ChatGPT by the acting head of the US cybersecurity agency.
We also look at Google rolling out stronger ransomware protections in Drive, France accelerating plans to ban social media for under 15s, and what recent incidents involving AI powered toys reveal about data exposure risks for children.
All of that, and more, in this week’s episode of The Awareness Angle.
The Awareness Angle is best served in full. Watch on YouTube, or listen on Spotify or your favourite podcast platform to get the complete discussion and context.
Watch or listen to the episode today - YouTube | Spotify | Apple Podcasts
Visit riskycreative.com for past episodes, our blog, and our merch.
Support the show with all new Awareness Angle merch. Stickers, notebooks, mugs, and bits that quietly say you care about people, not just passwords. Click here to visit the shop.
This week's stories...
Hundreds of exposed Clawdbot gateways leave credentials and private chats exposed
Security researchers have identified more than 900 exposed Clawdbot gateways online, caused by poor setup and insecure default settings. These exposed systems allowed access to private conversations, API keys, and other sensitive information.
Clawdbot, also known as Moltbot, is an AI agent designed to make work easier by remembering information and acting on a user’s behalf inside messaging apps. Because it runs continuously and stores context over time, mistakes in setup can quietly expose far more than people realise.
Incidents like this often happen without malicious intent. Tools are adopted quickly to save time, experiments move into daily use, and security steps are skipped under pressure. The result is exposure created by normal human behaviour, not bad actors.
The Awareness Angle
- People prioritise speed and convenience – Security steps are often skipped to get work done
- Assumptions replace checks – If a tool feels helpful and familiar, risk is easily overlooked
- Psychological safety matters – People need to feel safe admitting mistakes before exposure grows
New malware service pushes phishing extensions into the Chrome Web Store
Researchers have uncovered a new malware service called Stanley that allows criminals to create phishing browser extensions and successfully publish them to the Chrome Web Store. These extensions are designed to overlay legitimate websites with fake content while keeping the real web address visible, making them difficult to spot.
The service is sold in tiers, offering features such as silent installation, custom branding, and a management panel for attackers. Because the extensions pass official store checks, users are more likely to trust them, install them, and continue using them without suspicion.
This type of attack relies less on technical exploitation and more on habit. People install extensions to save time, solve small problems, or boost productivity, often without revisiting what access those extensions still have later on.
The Awareness Angle
- Trust is built on familiarity – Official stores and recognisable browsers lower people’s guard
- Convenience drives behaviour – Small productivity gains can outweigh perceived risk
- Unused access is rarely questioned – Extensions often stay installed long after they are needed
France moves to fast track a social media ban for under 15s
France has announced plans to fast track a ban on social media use for children under 15, with the aim of having new rules in place before the next school year. The proposal includes stricter age verification and builds on existing restrictions around mobile phone use in schools.
The move follows similar action in Australia, where millions of under 16 social media accounts have already been removed. French officials have acknowledged that age limits can be bypassed, but see this as an important first step in reducing exposure to online harm and emotional manipulation.
Rather than focusing on individual behaviour, the approach shifts responsibility toward platforms and regulation, recognising that expecting children to self regulate in highly persuasive online environments has not worked.
The Awareness Angle
- Children are not the problem – Platforms are designed to capture attention, not protect wellbeing
- Rules fill the gaps left by design – Regulation steps in where controls and safeguards fall short
- Adults set the environment – Safety improves when responsibility moves away from the user
US cybersecurity chief uploaded sensitive government documents to ChatGPT
The acting head of Cybersecurity and Infrastructure Security Agency uploaded internal government documents marked “for official use only” into ChatGPT. The uploads triggered automated warnings, and an internal review is now assessing any potential impact.
The documents were described as internal but unclassified, and the use of ChatGPT was said to be short term and previously approved as an exception. Following the incident, multiple staff members were suspended from accessing classified systems while investigations continue.
The story highlights how quickly everyday tools can blur boundaries at work, especially when people are under pressure to move fast or solve problems efficiently.
The Awareness Angle
- People default to familiar tools – Convenience often overrides caution
- Exceptions create confusion – One off permissions weaken shared understanding of risk
- Hierarchy does not prevent mistakes – Senior roles are not immune to everyday human error
Discussion Points...
ShinyHunters swipes right on 10M records in alleged dating app data grab Watch | Read
US cybersecurity chief uploaded sensitive documents to ChatGPT Watch | Read
What is Clawdbot and why it matters Watch | Read
Hundreds of exposed Clawdbot gateways leave data vulnerable Watch | Read
The AI agent craze is turning into a security nightmare Watch | Read
Phishing malware sold as Chrome extensions Watch | Read
Google Drive adds better ransomware protection Watch | Read
France moves to ban social media for under 15s Watch | Read
Exposed admin panel found in AI toy Watch | Read
Awareness, spotting phishing and AI content Watch | Read
Misleading breach headlines and fake panic Watch | Read
Reverse image search exposing fake profiles Watch | Read
Gift card scam warnings appearing in stores Watch | Read
Covering phone cameras as a security habit Watch | Read
Free WiFi on flight QR code prank Watch | Read
TikTok Argos MacBook discount scam Watch | Read
Real world phishing and family account compromise Watch
And finally...This Week I Messed Up!
This week, the story that hit closest to home wasn’t a breach headline or an AI scare. It was my mum.
Her email account was compromised, no two factor authentication, a password she’d used for years, and attackers quietly sending gift card scam emails to people she trusts. I only spotted it once messages started disappearing from her inbox.
When I got proper access, the reason was obvious. The attackers had set up inbox rules to automatically mark messages as read, move them into hidden folders, and silently redirect copies to a Gmail account they controlled. From the outside, everything looked normal.
I spend my life talking about security awareness, and I still hadn’t locked down the person closest to me.
The Awareness Angle
- Inbox rules are a red flag – attackers often use filters and redirects to hide their activity and stay undetected
- No 2FA is still a big risk – even “quiet” email compromises can run for days without being noticed
- Check your family, not just your workplace – the people closest to you are often the least protected
It’s a reminder that security isn’t just an organisational problem. It’s personal. Take five minutes this week to check in on someone you care about.
Thanks for reading! If you’ve spotted something interesting in the world of cyber this week, a breach, a tool, or just something a bit weird, let us know at hello@riskycreative.com. We’re always learning, and your input helps shape future episodes.
Ant Davis and Luke Pettigrew write this newsletter and podcast.
The Awareness Angle Podcast and Newsletter is a Risky Creative production.
All views and opinions are our own and do not reflect those of our employers.
