OpenClaw Security Breach: 42,000 Instances Exposed
OpenClaw experienced a significant security breach with 42,000 exposed instances and 341 malicious marketplace skills. Five CVEs were identified, indicating the severity of the vulnerabilities. As a response, AgentVault was developed to act as a security proxy that wraps around Claude agents, providing real-time monitoring and management of operations.
Key features of AgentVault include:
- Blocking dangerous commands such as
rm -rfand suspicious network requests before execution. - A real-time dashboard that displays every action attempted by Claude.
- Permission approval mechanisms for risky operations.
- Comprehensive network monitoring, rate limiting, and credential scanning functionalities.
- A full audit trail to track all activities.
This solution utilizes a Node.js proxy, SQLite for logging, and a Next.js-based dashboard. Remarkably, AgentVault was built in a 3-hour session due to the urgency of the situation. Its source code has been made open-source and can be reviewed on GitHub.
The incident and rapid development of AgentVault raise questions about security measures in place for local setups utilizing AI coding agents. What security protocols are you using?
📖 Read the full source: r/LocalLLaMA
👀 See Also
ClawSecure: Security Platform for OpenClaw Ecosystem with 3-Layer Audit and Real-Time Monitoring
ClawSecure is a dedicated security platform for OpenClaw that performs 3-layer security audits, real-time monitoring with SHA-256 hash tracking every 12 hours, and provides full OWASP ASI coverage. It has audited 3,000+ popular skills and is free to use with no signup required.
Trojan found in Claude Flow repository skill.md files
A GitHub repository containing Claude Flow skill files was found to contain a Trojan identified as JS/CrypoStealz.AE!MTB. The malware triggered automatically when an AI-based IDE opened the folder to read the markdown files.
Sunder: A Rust-Based Local Privacy Firewall for LLMs
Sunder is a Chrome extension that acts as a local privacy firewall for AI chats, built using Rust and WebAssembly, ensuring sensitive data never leaves your browser.
Testing Uncensored Qwen 3.5 35B Models for Cybersecurity Questions
A cybersecurity professional tested three uncensored Qwen 3.5 35B models on hacking and security bypass questions, finding significant differences in response quality compared to the original censored model. The uncensored models consistently provided answers where the original model refused or gave incomplete responses.