135,000+ OpenClaw AI agent instances exposed to the internet

Feb 2026

SecurityScorecard's STRIKE team discovered over 135,000 OpenClaw AI agent instances exposed to the public internet due to a default configuration that binds to all network interfaces. Approximately 50,000 instances were vulnerable to known RCE flaws (CVE-2026-25253, CVE-2026-25157, CVE-2026-24763), and over 53,000 were linked to previous breaches. Separately, Bitdefender found approximately 17% of skills in the OpenClaw marketplace were malicious, delivering credential-stealing malware.

Incident Details

Perpetrator:Platform default configuration

Severity:Catastrophic

Blast Radius:135,000+ exposed OpenClaw instances; 50,000+ vulnerable to RCE; attackers gain access to credentials, filesystem, messaging platforms, and personal data

Tech Stack

OpenClawTypeScriptWebSocket

References

The Register: 135,000+ OpenClaw Instances Exposed to the Internet ↗The Hacker News: OpenClaw Bug Enables One-Click Remote Code Execution ↗