1,100+ OpenClaw gateways found on Shodan with zero authentication — leaking API keys, OAuth tokens, chat histories.
Skills are just text files. Malicious skills can instruct agents to exfiltrate data, credentials, or execute arbitrary commands.
Agents often have access to user's API keys, email, calendar. One compromised skill → full account access.
Account rename → scammers hijacked old handles in 10 seconds. Fake $CLAWD token hit $16M market cap.