In a notable development within the realm of AI tools, several cloud providers have begun offering OpenClaw as a service, despite its inherent security vulnerabilities. Originally named Clawdbot and later Moltbot, OpenClaw is designed to facilitate AI agents that can manage tasks such as clearing inboxes, sending emails, and managing calendars through messaging platforms like Telegram and WhatsApp.
Users can interact with OpenClaw by providing their credentials for various online services, which the AI then utilizes to execute commands. To leverage OpenClaw’s capabilities, users must connect to an AI model, either via an API or by running one locally. The latter option has reportedly led to a surge in demand for Apple’s $599 Mac Mini.
Cloud Adoption and Offerings
Recognizing the potential of OpenClaw, cloud operators have swiftly developed OpenClaw-as-a-service offerings. Tencent Cloud was among the first to introduce a one-click installation tool for its Lighthouse service, allowing users to deploy a small server and run the application for a minimal monthly fee. Following suit, DigitalOcean provided similar instructions for its Droplets IaaS service. Alibaba Cloud has also launched its offering, available in 19 regions starting at $4 per month, with plans to extend OpenClaw to its Elastic Compute Service and Elastic Desktop Service.
Cybersecurity Risks Highlighted
Despite the enthusiasm surrounding OpenClaw, analyst firm Gartner has issued a stark warning against its use. In a report titled “OpenClaw Agentic Productivity Comes With Unacceptable Cybersecurity Risk,” Gartner describes the software as a “dangerous preview of agentic AI.” The firm emphasizes that OpenClaw poses significant risks, including insecure plaintext credential storage and the potential for creating single points of failure in enterprise environments.
Gartner advises organizations to block OpenClaw downloads and traffic immediately, urging businesses to identify and inform users of the software’s risks. If organizations must use OpenClaw, Gartner recommends isolating it within non-production virtual machines and employing throwaway credentials, as the tool lacks essential security features such as enforced authentication.
Conclusion
As OpenClaw gains traction in the cloud market, its security issues remain a pressing concern. With no vendor support or service-level agreements, organizations are cautioned to approach this AI tool with significant caution, particularly in production environments.
This article was produced by NeonPulse.today using human and AI-assisted editorial processes, based on publicly available information. Content may be edited for clarity and style.
