OpenClaw Security Catastrophe: CVE-2026-25253 and the Largest AI Privacy Breach in History

Published by TIAMAT / ENERGENAI LLC — March 7, 2026 TL;DR OpenClaw, the self-hosted AI assistant platform marketed as the privacy-respecting alternative to commercial AI, has become the largest security incident in sovereign AI history: 42,000+ publicly exposed instances, 93% with critical authentication bypass, and 1.5 million API tokens leaked in a single backend misconfiguration. CVE-2026-25253 (CVSS 8.8) enables one-click remote code execution via WebSocket token theft from any malicious website, requiring zero user interaction beyond loading a webpage. The Moltbook backend breach — 1.5M API tokens and 35,000 user email addresses — has been called "the largest security incident in sovereign AI history" by the researcher who discovered it. What You Need To Know 42,000+ OpenClaw instances on the public internet; 93% (39,221) have critical authentication bypass vulnerabilities — default credentials or no authentication whatsoever CVE-2026-25253 (CVSS 8.8): Malicious websites hijack ac