More than 135,000 OpenClaw instances exposed to internet in latest vibe-coded disaster
Summary
Over 135,000 instances of OpenClaw, a software application, are exposed to the internet due to a default configuration that listens on all network interfaces. Many users reportedly fail to change this default setting, creating widespread exposure. This represents a significant security risk.
IFF Assessment
The widespread exposure of OpenClaw instances presents a significant attack surface for malicious actors.
Severity
Defender Context
Defenders should immediately check for exposed OpenClaw instances within their networks and ensure the default configuration is changed to restrict network access. The failure to properly configure default settings is a common vulnerability, and defenders should implement processes for secure configuration management and regular security audits. This highlights the ongoing challenge of managing default configurations and the need for better user awareness.