Wednesday, February 4, 2026

Peter Steinberger built the AI assistant that Siri promised but never delivered.

His creation, Clawdbot (later rebranded to Moltbot, then again to OpenClaw), was unlike any AI agent before it - powerful, autonomous, and alarmingly capable.

156k GitHub stars and counting in almost a month. Full system access. Shell commands. Browser automation.

An always-on digital butler that could book your flights, check your emails, and execute code while you slept.

Then Anthropic's lawyers sent a trademark notice, and Steinberger tried to rename his creation.

Ten seconds. That's how long crypto scammers needed to snatch his old handles mid-rebrand and pump a fake token to $16 million.

While the pump-and-dump played out on Twitter, security researchers were discovering something worse - hundreds of OpenClaw instances sitting naked on the open internet. No authentication. No VPN. Just raw shell access waiting for anyone curious enough to look.

One researcher extracted a user's private key in five minutes. His attack vector? An email.

When your AI butler can read your messages, execute your commands, and sign your transactions - but forgets to check who's giving the orders - who's really running the house?

Read more »

We provide an anonymous platform for whistleblowers and DeFi detectives to present their information to the community. All authors remain anonymous. 
We are all rekt.