this post was submitted on 10 Feb 2026
223 points (99.1% liked)

Technology

81118 readers
4697 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
223
More than 135,000 OpenClaw instances exposed to internet in latest vibe-coded disaster (www.theregister.com)
submitted 3 days ago* (last edited 3 days ago) by tonytins@pawb.social to c/technology@lemmy.world
12 comments fedilink hide all child comments
 

It's a day with a name ending in Y, so you know what that means: Another OpenClaw cybersecurity disaster.

This time around, SecurityScorecard's STRIKE threat intelligence team is sounding the alarm over the sheer volume of internet-exposed OpenClaw instances it discovered, which numbers more than 135,000 as of this writing. When combined with previously known vulnerabilities in the vibe-coded AI assistant platform and links to prior breaches, STRIKE warns that there's a systemic security failure in the open-source AI agent space.

"Our findings reveal a massive access and identity problem created by poorly secured automation at scale," the STRIKE team wrote in a report released Monday. "Convenience-driven deployment, default settings, and weak access controls have turned powerful AI agents into high-value targets for attackers."

all 14 comments
sorted by: hot top controversial new old
[–] sun_is_ra@sh.itjust.works 91 points 3 days ago (2 children)

Would be great if the article starts with: "What even is open claw?"

A picture of a cooked lobster is not helping

[–] stefenauris@pawb.social 45 points 3 days ago (1 children)

I didn't know either and so others don't have to look it up either:

OpenClaw is a free and open-source autonomous artificial intelligence agent developed by Peter Steinberger. It is an autonomous agent that can execute tasks via large language models, using messaging platforms as its main user interface

[–] tonytins@pawb.social 26 points 3 days ago (1 children)

It went through a lot of rebranding as well. You might have heard of Clawdbot or Moltbot. All the same thing.

[–] Trilogy3452@lemmy.world 7 points 3 days ago (1 children)

Is that the bot in the bots social network thing they created? Or is that unrelated

[–] achille225@jlai.lu 8 points 3 days ago

Yes it's all the same thing

[–] XLE@piefed.social 11 points 3 days ago

It's a metaphor for the cooked humans that are spinning up super exploitable chatbots for it

[–] pennomi@lemmy.world 25 points 3 days ago

Precisely the thing everyone predicted happened? Who could have seen this coming?!

[–] BroBot9000@lemmy.world 11 points 3 days ago

Bwahahahahahahha

[–] Damage@feddit.it 4 points 3 days ago

Hilarious.