Whether you're initiating or advancing AI, Marlabs provides the expertise to maximize its enterprise value. We implement AI solutions in a way that frees people up for more impactful work while simultaneously minimizing human errors in more repetitive processes.

AgilityAI

Marlabs AgilityAI is not just a platform; it is a comprehensive framework for transformation. It addresses the core points-of-failure by providing a framework to align AI to business value, pre-built accelerators to reduce implementation time, and the operational models to deploy AI confidently.

AI Discovery & Strategy

Whether you’re excited or cautious about implementing AI, our discovery service is your perfect launchpad. This comprehensive program equips you with the tools to navigate the exciting world of AI, understand its limitations, and identify how it can transform your business.

Agentic & Interactive AI

At the core of digital workforce augmentation, agentic AI is redefining organizations. We build AI agents that understand your organization, enabling them to boost customer experience and engagement, improve internal decision-making, increase productivity, solve understaffing concerns, and more.

AI Development

Cognitive AI can discover patterns in your data that reveal possibilities for optimization and innovation faster and more accurately than otherwise possible. We have the expertise to implement AI with the proper guardrails for meaningful, expediated results in your quest for knowledge.

AI Governance

Becoming an AI-powered organization requires trust at scale in AI solutions implemented throughout your business. At Marlabs, we embed governance into everything we do with clear, consistent, and reusable policies, along with human oversight and purposeful checkpoints.

AI Transformation

From evaluating AI readiness to reaching AI excellence, we help organizations become AI-empowered through strategic and meaningful transformation. With our AI Evolution Framework, our team serves as a safety net to help you strategize meaningfully, avoid common mistakes, and augment your workforce with AI solutions and agents.

Data

Our team has decades of experience cultivating sustainable, value-driven efforts in data and analytics. Whether you’re just moving beyond department-focused spreadsheets or looking to upgrade your data architecture to discover cutting-edge insights, our team has proven results you can trust.

Data Strategy

At Marlabs, we want every step of our clients’ data journeys to have meaning and impact. That’s why we include more than data when creating a data strategy. We consider technology, processes, people, culture, and team adoption to help you drive data-informed decision-making.

Data Governance

Keeping data clean, consistent, and compliant prepares a foundation for creating data you can trust. As the world of data continues to expand, doing so grows more difficult—and more important. We can structure your data to meet all your business requirements and goals.

Data Management

Marlabs can help you manage your data so that you have a single, trustworthy source of truth for the organization, one that is comprehensive and up to date. In doing so, we also help you break silos and build a data-literate organization.

Data Engineering

Taking your data strategy from plan to execution is a daunting task for any team. With a rich history of successful data migrations, data architecture engineering, and analytics enablement, Marlabs can accelerate your success so you can make data-driven decisions sooner.

Advanced Analytics

We harness the full potential of your data by implementing analytics solutions that point out anomalies, predict customer needs, highlight ways to optimize resources, and so much more. We focus on developing analytics that are actionable and accessible for your team.

Data-as-a-Product

Data-as-a-product thinking transforms the way enterprises think about data and ensures their data is AI-ready. As the finish line for mature data management, it ensures every data asset is clean, trustworthy, up-to-date, and contextually designed.

Digital Product Engineering (DPE)

Marlabs’ tailored engineering solutions create intuitive digital experiences with high-performing software. We engineer products to be user-centric and to continuously add value in an age where user needs and technological possibilities are ever-changing.

Application Development

At Marlabs, we’re experts in creating innovative, future-ready application solutions. We partner with you to ensure your apps are maintainable and user-centric. As digital needs evolve, we work to continuously deliver new value through iterative development.

Application Modernization

Struggling with out-of-date applications? Looking to build a competitive edge with applications that meets customer and employee needs for automation, AI, and customization? Either way, our team is ready to help you make the transformation into the digital, cloud-focused age.

DevOps

Our DevOps services bring together your teams for software development and IT operations to deliver fast, secure, and reliable software. By orchestrating people, processes, and platforms, we establish clear and collaborative integration and automation solutions.

Product & Platform Strategy

Our scalable and repeatable framework aligns business vision with user needs and technical capabilities. By keeping the whole technology ecosystem in mind and embedding AI directly into the strategy, we create future-ready architectures that are secure and adaptable.

Product Sustenance & Support

Marlabs’ product sustenance and support focuses on anticipating and evolving with growing organizational and customer needs—not just reacting to issues. We make sure your products are always available, always secure, and always optimized with zero business disruption.

Quality Engineering

More than just traditional software testing, Marlabs’ quality engineering relies on cutting-edge, AI-driven testing methodologies and automation frameworks. From initial strategy to continuous improvement, we build quality engineering into every step of product engineering.  

Intelligent Automation

As experts in intelligent automation, we take automating tasks to the next level. Our team can help you automate even unstructured repetitive tasks using intelligent and AI-power automation. In doing so, we release your team to more high-value tasks.

IA Digital Governance

We help you take control of your processes by automating governance for security, consistency, and accuracy. By leveraging AI and machine learning, our intelligent automation solutions can provide unparalleled integrity in your data and processes.

RPA

With our robotic process automation (RPA) solutions, Marlabs reduces human error in repetitive processes. In doing so, we enable your people to spend their time and energy on more meaningful tasks. Then, by combining AI and automation, we take your processes to the next level.

Automation Partners

Our team has extensive experience with a variety of automation platforms. While we partner with major industry players to provide the best service possible, we also custom fit all our solutions to our clients’ business needs and objectives.

Experience Design

In the age of digital transformation, human-centered design has never been more important. Whatever stage you’re at, whether its initial ideation or modernization improvements, our team can help build intuitive solutions that drive your business forward.

UI / UX

Our user interface (UI) and user experience (UX) solutions focus on the entire customer journey. We focus on helping you build trust with both internal and external users by providing them with natural and frustration-free interactions with your products.

Ideation & Innovation

Do you know there’s a market need, but you’re not sure what would fill it? Do you have an idea of what you want to do, but you’re not sure how to execute? Our expert consultants use their technical and industry knowledge to guide you through vision casting and design preparation.

Design Services

From ideation and planning to creation and refinement, our team offers services through the full design lifecycle. We develop comprehensive, creative, and thoroughly tested design products that incorporate all your business and customer needs.

Design as a Service

Our design-as-a-service offering takes a flexible and scalable approach to design initiatives. We provide the design support you need, when you need it, so that you can tackle projects with confidence.

ERP & CRM

With our ERP and CRM solutions, you can empower your organization the way you always wanted to. Whether you're looking to migrate to a new system or reinvigorate your current setup, our experts strategically design platforms to unlock possibilities that serve you and your customers better than ever before.

ERP Migration

Ready to make the move to next-gen enterprise systems? Our meticulous digital transformation experts empower users and accelerate ERP migration for rapid results you can trust.

ERP Modernization

In the age of intelligence, sometimes the potentially most powerful systems are actually the ones slowing down business growth. Our team modernizes ERPs to enable real-time insights, intuitive user experiences, and future-ready AI innovation.

CRM Implementation & Integration

With a strategic focus on ROI and revenue results, our team does more than just set up your CRM system. We focus on user adoption and empowerment by building in governance, training, and intelligent automation.

Cloud

As the world becomes ever more digital, cloud infrastructures have never been more important. Whether you’re migrating to a new system, implementing edge computing, or increasing your digital security, our team can help you confidently architect, migrate, optimize, and secure your cloud environments.

Cloud Engineering

Unlock the full potential of cloud‑native architectures with purpose‑built solutions that adapt as your business evolves. At Marlabs, our automation‑driven DevOps pipelines ensure rapid delivery and continuous performance tuning, keeping you agile in a competitive landscape.

Cloud Migration

Don’t let migration complexity slow down your digital ambitions. Through personalized, risk-mitigated roadmaps, we seamlessly transition your workloads to the optimal cloud environment to ensure minimal business disruption.

Digital Infrustructure

Modernize your IT backbone for multi-cloud realities including networks, storage, and compute that scale on demand. With intelligent capacity planning, AI-driven monitoring, and 24/7 maintenance and optimization, we deliver the reliability, flexibility, and efficiency your critical digital operations need.

Digital Security

With security stakes higher than ever, proactive threat detection and zero‑trust controls are non‑negotiable. Our expertise in cloud-native security frameworks and proactive threat management ensures compliance and builds unshakeable trust.

Digital Workspaces

Achieve true workforce flexibility through secure, high-performance virtual desktops and applications accessible anywhere. Simplify management, enhance security, and boost productivity while enabling seamless user experience across your business.

Edge Computing

Deploy computing and analytics closer to your data sources, enabling real-time insights and faster decision-making. We help embed continuous monitoring, identity governance, and automated responses across your cloud estate — balancing iron‑clad defense with frictionless access.

Infastructure as a Service

Ditch the hardware burden and partner with us to access on‑demand compute, storage, and networking resources. Our managed services deliver instant scalability, enhanced resilience, and predictable costs for your core needs.

IoT

Looking to transform your smart devices into intelligent, scalable connected assets? Marlabs builds custom IoT solutions that unlock real-time insights, automate operations, cut costs, and elevate customer experiences.

Platform Development

Think of platform development as the control center of your IoT solution. Our experts will create the software and provide the tools and functionality that connects, controls, monitors, and manages all the components in your IoT ecosystem.

Cloud Backend Development

Marlabs cloud engineers develop high-performance backends that operate reliably, securely, and in real time. We handle and design everything, from receiving the data, to processing it, to analytics and cost optimization.

Infrastructure & Support

Marlabs’ infrastructure services act as the backbone to power your IoT solution. Our team implements and manages the foundational systems that connect your devices to the cloud, monitor performance, and ensure the system’s resilience 24/7.

Device Data Management

We capture, organize, and analyze your data in real time. Using advanced analytics and machine learning, we uncover meaningful insights when it matters most.

Talent Services

Our team of employment staffing consultants are experts in understanding organizational talent needs and organizing the proper strategy and people to fill those needs. With nearly three decades of proven experience, we deliver comprehensive talent solutions with quick turnarounds to help you fill the right roles with the right people.

Talent Solutions

With over 10,000 placements under our belt, our experts in enterprise staffing can help you quickly and effectively find the best fit for your organization's needs. Having served hundreds of clients across dozens of industries, we know how to spot specialized talent that's also a good cultural fit.

Talent Offerings

Whatever your talent needs, our team can help. We can enhance your staffing operations overall, source top-tier and industry-specific talent for specific roles, and help you stay ahead with AI-driven digital workforce augmentation. Not only that, but for long-term, strategic talent planning, our team has also developed a framework to establish Center of Excellence talent labs.

Talent Partnership

Our comprehensive approach to equal opportunity, inclusivity, diversity, and equity goes beyond just connecting people with the right skills to the right roles. We also work with businesses to understand their organizational values and how we can drive innovation, employee engagement, and long-term success by creating an equitable and representative workforce.

Industries

Life Science

With over 20 years of industry experience, Marlabs partners with our clients to accelerate and innovate clinical processes. Ensuring safety and compliance, our team can help you develop life-changing products and technologies and increase your market competitiveness.

Healthcare

For 20+ years, Marlabs has helped healthcare organizations deliver quality care to patients while also improving operational and financial outcomes. Through trustworthy data and technology, we support patient scheduling, clinical decision-making, financial reporting, personalized care, and more.

Financial Services

Marlabs has a rich history of helping financial services clients better serve and reach their customers. By unlocking the full potential of customer and organizational data, we drive secure, forward-minded growth through analytics, AI, and digital product engineering implementations.

Manufacturing

With the increasing pressure to modernize, manufacturers turn to Marlabs to develop sustainable digital solutions for performance optimization and supply chain management. Through data management, digital infrastructures, IoT devices, and predictive analytics, we help you stay competitive.

Telecom & Media

As customer demands require increasing customization and digitization, Marlabs helps our telecommunications and media organizations trust their data. In doing so, our clients face fewer security risks, reduce customer churn, and find innovative ways to engage customers.

Partners

Databricks

Organizations across industries unleash the power of their data with Databricks. Their innovative solutions scale with your business needs. Marlabs’ of certified Databricks engineers can support you through migration, governance, and implementation to cultivate data and analytics you can trust.

Salesforce

As a Salesforce Platinum Cloud Alliance partner, Marlabs helps you make the most out of your Salesforce investments. From initial implementation and integration to AI additions and maintenance, our team is uniquely positioned to support your Salesforce initiatives.

Amazon AWS

Part of the AWS Partner Network (APN), Marlabs’ certified experts can meet all your AWS needs. We provide scalable, future-ready AWS solutions for data initiatives, digital infrastructures, cloud migrations, application development, AI implementations, and more.

Google Cloud

As a part of the Google Cloud Partner Network, Marlabs transforms organizations into data-driven and AI-empowered enterprises. The Google Cloud Platform has hundreds of tools in their AI, ML, and data analytics suite, and our experts are here to help you navigate which ones will best meet your organization’s needs.

Microsoft

As an official partner of Microsoft Fabric, Marlabs implements solutions for Azure, Power BI, Data Factory, Power Apps, and Copilot. For over 18 years, we’ve taken clients from strategy through execution for all their Microsoft needs and enabled internal teams to fully adopt their solutions.

Snowflake

With our team of certified Snowflake architects, Marlabs is uniquely positioned to shorten your time to value with Snowflake’s data warehousing. Our architects partner with you to develop a holistic and well-integrated solution that enables you to reach your business objectives.

Perfecter.ai

An official Perfecter.ai partner, Marlabs employs autonomous intelligence through Perfecter.ai AI agents. These solutions are particularly well-known in the financial services industry for offering secure, automatic workflows that slash manual effort by 70%.

Profisee

Marlabs is a certified partner with Profisee, a leader in data management software. Their solutions are tailored for integration with Microsoft environments, and our cross-trained experts are specially qualified to help organizations bring their data strategy to life with these integrations.

ArchLynk SAP

Marlabs’ certified Databricks engineers, together with their expert SAP partners at ArchLynk, bridge the gap between operational and supply chain data within SAP and the innovative data science and AI capabilities of Databricks. Marlabs’ and ArchLynk’s engineers offer a 360-degree view of operational, supply chain, and other enterprise data that update in real time.

Infor

Infor is a global leader in industry-specific business cloud software products. Our strong partnership amplifies the impact of your ERP migrations and implementations. Whether you're looking for a full strategic implementation or maintenance testing services, our experts are here to help.

Resources

Marlabs 2026 AI Adoption Report Provides Playbook for Companies to Drive Significant AI Value

80% of Enterprises Capture 25% of AI’s Total Economic Value

June 7, 2026

OpenClaw: The Meteoric Rise and the Risks Enterprises Shouldn’t Ignore

OpenClaw, a “weekend project” that became a viral sensation, continues to gain in popularity despite mounting security concerns.

May 4, 2026

End-to-end automated quoting & contracting Salesforce solution for leading agribusiness

Marlabs designed and implemented a unified Salesforce platform that streamlined quoting and contracting into a single interface, integrating with SAP and SharePoint to automate workflows, ensure pricing accuracy, and enable quote-to-contract conversion.

May 13, 2026

The Transformation of Life Sciences and Healthcare with AI

Rao Kunche discusses how Marlabs leverages AI, tech, and data to accelerate drug discovery, optimize clinical trials, and enhance engagement across the healthcare and life sciences industry.

June 2, 2026

Report - The AI Divide Is Becoming a Competitive Moat & Widening Fast

80% of companies capture just 25% of AI’s economic value. See what enterprises must prepare for today and through 2026.

About

What We Do

Why Choose Marlabs

Awards & Recognitions

Marlabs Executive Team

Frequently Asked Questions

What We Do

Your trusted transformation partner, Marlabs delivers complex, AI-driven technology solutions across industries. Our intelligent solutions span AI, data, analytics, automation, cloud, product engineering, IoT, ERP, CRM, and experience design.

Why Choose Marlabs

With over 2,000 employees, over 100 awards, and nearly 3 decades of experience, Marlabs delivers where others fail. Our cross-functional teams bring clients measurable results through their collaborative and agile approach to strategic execution.

Awards & Recognitions

Across major players like Zinnov Zones, ISG, and Everest Group, among many others, our teams have been recognized as leaders across industries, technical solutions, and consulting services.

Marlabs Executive Team

Our executive team brings together deep industry expertise, bold leadership, and a shared commitment to delivering transformative results for our clients. Guided by a client‑centric mindset and a passion for collaboration, they lead Marlabs with a clear focus on innovation and measurable impact.

Frequently Asked Questions

Want to know more about what we offer, our mission, how we ensure practical results, our industry-specific experience, our engagement models, and our story? Find all the answers and more here.

Share this content:

Marlabs Team

+ Connect on Linkedin

Our team is committed to getting you the resources you need to make you the hero in your organization.

Related Services:

AI Automation

AI Digital Workforce

AI Evolution Framework

OpenClaw, a “weekend project” that became a viral sensation, continues to gain in popularity despite mounting security concerns and increasing compute constraints across the AI platforms it relies on.

Introduced on GitHub in November 2025 as Clawdbot (then renamed first Moltbot and then OpenClaw), this free, open-source agentic AI tool has quickly become one of the most discussed autonomous AI agents in the market.

Developers are experimenting with it.

Novices are installing it.

And cybersecurity firms and major platforms are sounding alarms.

This article explains what OpenClaw is, how it works, why it exploded in popularity, and what enterprises need to know before it shows up on your networks. We’ll also discuss how to protect your organization from risk.

What Is OpenClaw?

OpenClaw is a self-hosted, open-source AI agent designed to execute tasks on your behalf.

It runs locally on your machine and connects to generative AI models, such as ChatGPT, Gemini, Claude, Grok, and DeepSeek, to power its actions.

Chatbots vs. Agents

Traditional AI chatbots are conversational. You enter a prompt, get a response, and act on it yourself.

Ask a chatbot to clean your inbox and it will explain how you should do it, but execution is left to you. When you close the tab, the chatbot is gone.

OpenClaw is different. It doesn’t explain. It acts. It performs the cleanup for you, keeps working until the job is done, and retains memory across sessions.

An AI agent is AI-powered software that can interpret instructions, make decisions, and take actions autonomously. It:

Understands a goal (e.g., “organize my inbox”)

Decides which tools or data sources are needed

Executes tasks using connected systems (files, apps, APIs, scripts)

Returns results and continues to act until the objective is achieved

How Does OpenClaw Work?

OpenClaw functions as a powerful gateway or universal connector that allows a single AI agent (that can now generate subagents) to operate across your devices, apps, and platforms, regardless of operating system.

You interact with OpenClaw through messaging apps you already use, like WhatsApp, Telegram, Discord, Slack, Signal, iMessage, Microsoft Teams, Gmail, and others.

You just text OpenClaw on a chat platform and ask it to do something. It interprets your natural language instructions, and the AI agent responds or carries out your instructions within that same conversation.

The agent:

Interprets your intent

Plans the required steps

Executes actions across connected systems

Evaluates the results

Continues until the goal is complete.

This is agentic AI in practice. The assistant follows you across apps and works proactively around the clock.

What Access Does OpenClaw Need?

OpenClaw requires broad permissions to:

Access, read, and write local files

Integrate with your APIs

Integrate with your messaging, productivity, social media, automation, smart home, and creative platforms

Run commands or scripts

Manage and control emails, tasks, and workflows using automation

Those permissions enable OpenClaw to do things like:

Read, organize, and send emails

Manage your calendar

Write or modify files

Conduct web searches and fill out forms

Check you in for flights

Set price alerts

Execute scripts and interact with APIs

There are lots of use cases. OpenClaw takes multi-step actions with minimal guidance and retains memory across sessions.

Because OpenClaw is open source and MIT-licensed, developers continually extend its capabilities by building new “skills” and integrations, which have expanded rapidly, reaching tens of thousands by April 2026.

The official openclaw.ai site emphasizes that the software runs locally and keeps data private “by default.” That local-first model is part of the appeal. And a key source of risk.

When choosing community skills, proceed carefully. Threat actors target open-source ecosystems, and not every skill is what it claims to be.

OpenClaw’s Meteoric Rise and Troubles

November 2025: Peter Steinberger releases Clawdbot on GitHub as an open-source autonomous AI agent.

December 2025: Clawdbot gains viral traction across developer communities

January 2026: Rapid rebranding after Anthropic asks Steinberger to rename the project because it is too similar in name to Claude. “Moltbot” is chosen as new name, but soon after it is changed to “OpenClaw.”

February 2026: OpenClaw surpasses 200,000 GitHub stars in under three months, eventually reaching 250,000 shortly after. The ecosystem expands rapidly, with thousands of community-built “skills” and integrations.

February 2026: Security researchers begin publishing findings on exposed deployments and potential security risks. Major platforms begin restricting certain forms of OpenClaw use. New releases and patches come out rapidly to address security vulnerabilities.

February 14, 2026: OpenClaw creator Steinberger announces he is joining OpenAI, showing a commitment to the broader autonomous AI agent paradigm.

April 4, 2026: Anthropic announces that Claude Pro and Max subscribers can no longer apply their flat-rate subscription usage to third-party agent frameworks like OpenClaw. To continue using OpenClaw and similar tools with Claude, users must switch to a separate pay-as-you-go (extra usage) billing model, signaling growing platform pushback against high-consumption third-party agent workloads.

Why Did OpenClaw Go Viral So Quickly?

OpenClaw went viral because it delivers the long-awaited ability for everyday users to have a personal AI assistant that takes action.

AI chatbots are great for drafting, summarizing, and answering questions. But the user must copy, paste, send, schedule, upload, or execute the results.

OpenClaw eliminates the time-consuming execution.

A single chat message prompts the AI agent to handle the rest using connected systems. The interactions feel simple and effortless since they happen inside apps you already use.

OpenClaw is a novelty, but that’s not the only reason for growth and attention. Five structural factors accelerated adoption:

Natural-language agentic automation. Users automate digital workflows by typing a command. The agent executes, then reports back. Developers can delegate scripting tasks. Knowledge workers can offload administrative processes without building complex automation pipelines. Power users can custom build without complex code.

Open-source transparency. Anyone can download, modify, and extend OpenClaw. Developers can inspect the code, modify it, and build plugins and custom skills to extend capabilities. In this case, the community expanded OpenClaw’s functionality faster than almost any other recent GitHub project.

Self-hosted architecture. Running locally appeals to users who want their data to stay on their personal hardware rather than entirely in the cloud. The promise of greater control over your data and how you configure the tool continues to be a huge draw.

AI-model flexibility. OpenClaw is model agnostic. It connects to multiple AI models, freeing users from being locked into a single provider. You can experiment with different models and cost structures to find the right fit for your budget and performance needs.

Integrates with existing workflows. You don’t need to learn a new interface since OpenClaw operates inside your existing messaging platforms.

Where the Risk Begins: Emerging Security Issues

The same features that make OpenClaw powerful create exposure.

Enterprises are rightfully wary because OpenClaw has access to private data (messages, files, credentials, and even stored payment information). And just because your data is local doesn’t mean hackers can’t find ways in.

OpenClaw operates with elevated permissions. It retains credentials, executes code, and interacts with external input. Those factors combined expose significant security risks that OpenClaw has begun to address.

Elevated System Permissions and Exposed Deployments

OpenClaw typically runs locally with broad read/write access to files, connected services, and credentials.

Tools with this level of privilege must be hardened (reduce the attack surface and vulnerabilities) and sandboxed for isolation, something OpenClaw still doesn’t do by default. However, its sandbox capabilities were recently improved, adding the ability to run OpenClaw in a Cloudflare Sandbox.

If misconfigured, OpenClaw can access files, credentials, and system resources beyond what typical sandboxed applications allow.

Security analysts warn that poorly isolated installations can bypass traditional defensive controls. There are already reported stories of exposed instances discoverable on public networks due to weak authentication or improper deployment.

In February 2026, SecurityScorecard, a global enterprise that rates cybersecurity risk, initially reported 40,000+ instances of OpenClaw agents being exposed to the internet due to misconfiguration (SecurityScorecard blog, Feb. 11, 2026).

Later scans by the organization’s STRIKE Threat Intelligence team showed exposures quickly surpassed 135,000 instances across dozens of countries, with a significant amount flagged as vulnerable to remote code execution (RCE). SecurityScorecard provides a continuously updated view of exposed attack surfaces on the declawed.io dashboard.

In this, the OpenClaw agent becomes a new attack surface inside the organization. Systems connected to it might be vulnerable to RCE by threat actors.

‍“When OpenClaw runs with permissions to email, APIs, cloud services, or internal resources, an RCE vulnerability can become a pivot point. A bad actor does not need to break into multiple systems. They need one exposed service that already has authority to act,” the Security Scorecard article stated.

Similarly, cybersecurity company Bitsight found 30,000+ instances of exposure in a 12-day analysis of OpenClaw.

‍“Because of its omnipotent control over whatever you integrate with, OpenClaw is a huge security and privacy risk for the naïve user,” wrote Joao Crux, Principal Security Research Scientist at Bitsight (Bitsight blog, Feb 9, 2026).

The issue is not with agentic AI itself but with how it is deployed.

Prompt Injection: When Execution Amplifies Risk

OpenClaw interacts with external content, which opens the door to prompt injection attacks. All agentic AI systems are vulnerable to prompt injection attacks.

So, if OpenClaw unknowingly processes maliciously crafted instructions that are embedded in emails, documents, or web content, those instructions translate into harmful actions since OpenClaw is designed to execute.

Demos show how agents are manipulated into performing unintended actions.

It’s one thing when the harmful actions are limited to a machine. In an enterprise setting, the problem becomes more serious. A cleverly disguised instruction in an email or document could escalate into a script execution or data modification that has system-level consequences.

For this reason, we recommend enterprises do not allow the use of OpenClaw until such issues are resolved.

Malicious Skills and Supply Chain Problems

OpenClaw’s “skills” ecosystem creates another risk surface. To extend capabilities, you need to download skills and integrations.

But security researchers identified hundreds of skills and add-ons that masquerade as legitimate tools. Such malware can steal credentials and enable remote access you don’t want.

This introduces a supply-chain attack vector (a pathway hackers use to gain access to a system). The takeaway is that you should vet skills carefully before downloading.

Real-World Security Incident Raises Questions

In February 2026, Meta’s director of AI alignment reported that an OpenClaw agent deleted more than 200 emails from her inbox, despite her trying to intervene. The AI agent ignored explicit commands to confirm actions before execution. The problem reportedly didn’t stop until someone cut power to the machine.

The cause wasn’t explained (configuration issues, misunderstanding instructions, or error execution), but the incident went viral, demonstrating that autonomous agents move faster than users anticipate, and there are very limited ways to interrupt.

Platform Warnings and Account Restrictions

Platforms that host AI services and integrations are pushing back to regain control.

Microsoft posted a Feb. 2026 warning about OpenClaw’s limited built-in security controls and advises that OpenClaw should be deployed only in a fully isolated environment and use non-privileged credentials and access only non-sensitive data.

‍“OpenClaw should be treated as untrusted code execution with persistent credentials. It is not appropriate to run on a standard personal or enterprise workstation,” Microsoft’s warning said.

‍“Running OpenClaw is not simply a configuration choice. It is a trust decision about which machine, identities, and data you are prepared to expose when the agent processes untrusted input. For most environments, the appropriate decision may be not to deploy it,” (Microsoft Security blog, Feb. 19, 2026).

Agent-generated traffic and unauthorized access patterns are also creating new challenges for infrastructure providers.

In February, Anthropic and Google began issuing warnings and suspended some heavy-usage users who connected OpenClaw to the flat-rate Claude or Gemini subscriptions, citing heavy token consumption and policy violations.

‍A Google DeepMind engineer wrote on X that Google saw “a massive increase in malicious usage of the Antigravity backend that tremendously degraded the quality of service for our users.”

On April 4, 2026, Anthropic stopped allowing Claude Pro and Max subscribers to use their flat-rate subscription limits with third-party agent frameworks like OpenClaw. Users can still connect OpenClaw to Claude models, but they must switch to a separate pay-as-you-go, metered billing model (API keys or add-ons) or use Anthropic’s native Claude Code/Cowork tools.

Anthropic said the change was driven in part by infrastructure constraints and the strain that autonomous agent traffic places on shared capacity.

‍Steinberger commented on X, “Both me and @davemorin tried to talk sense into Anthropic, best we managed was delaying this for a week. Funny how timings match up, first they copy some popular features into their closed harness, then they lock out open source.”

The move reflects a broader shift where providers are beginning to limit how third-party agent frameworks consume shared resources, especially when usage patterns deviate from typical human interaction.

What This Means for Enterprises

Put aside the back and forth. If you’re an enterprise, your main concern might be whether an employee running OpenClaw on a personal device can expose your enterprise.

The answer is maybe. It depends on how OpenClaw is configured. If the agent connects to your enterprise email, internal APIs, or corporate credentials, it unintentionally becomes a gateway into your systems.

If the employee’s installation lacks proper isolation or is compromised or misconfigured during installation, it doesn’t just affect one user. It can expose the data and infrastructure behind them.

Security experts warn that AI agents running with persistent credentials further increase the attack surface.

Not every installation is dangerous, but governance matters.

OpenClaw deployments are being detected on corporate networks outside formally sanctioned projects. Agents with system access may appear as “shadow AI,” making them risky from a forensic standpoint.

Infostealer malware has been observed specifically targeting OpenClaw configuration data to exfiltrate keys, tokens, and credentials.

The core danger is the execution layer. A chatbot that generates text has a limited blast radius. An autonomous AI agent that executes commands across systems does not. It acts quickly, retains credentials, and operates across platforms.

All of these introduce risk that compounds. Errors can happen. Malicious inputs can escalate, and a single misconfiguration can turn into systemic exposure.

A personal AI agent on your network without governance quickly morphs from a productivity tool into an attack surface.

Steinberger’s Response to Security Concerns

Steinberger has publicly acknowledged the security criticism for the under three-month-old project. He posted on X that OpenClaw is a free, open-source project, not a hardened enterprise platform.

‍“The amount of crap I get for putting out a hobby project for free is quite something. People treat this like a multimillion-dollar business. . . .And yes, most non techies should not install this. It's not finished, I know about the sharp edges.”

On Feb. 7, Steinberger announced a partnership with VirusTotal to provide security scanning for skills in OpenClaw’s marketplace. Each is assigned a scan status.

‍“We’ve already seen documented cases of malicious actors attempting to exploit AI agent platforms. We’re not waiting for this to become a bigger problem.”

Steinberger clarified that a “clean scan doesn’t mean a skill is safe. . . . Start with publishers you trust.”

Subsequent updates to OpenClaw address different security issues head on to make OpenClaw safer, and we expect many more to follow.

Conclusion and 5 Practical Takeaways

OpenClaw is an important step forward for personal AI agents. The tool demonstrates how natural language can move beyond conversation and directly control real systems.

But, for all its promises, organizations and stakeholders should treat OpenClaw as an early-stage tool, not ready-to-use enterprise software.

OpenClaw operates with broad system privileges and autonomous execution capabilities, so if you’re considering installing it, keep a few practical realities in mind.

5 Practical Takeaways

Run OpenClaw in an isolated environment or on a virtual machine.

Turn sandboxing on from the start. Recent OpenClaw updates improve isolation, but separation is still essential while security risks remain high.

Monitor AI agent activity closely. Review logs, outbound messages, and system interactions regularly.

Limit permissions and credentials aggressively. Start small and expand access incrementally.

Put rigorous governance controls in place. Make sure unsanctioned installations don’t quietly connect to enterprise systems and create unmanaged access.

OpenClaw isn’t marketed as hardened enterprise software for good reason. Agentic AI in a personal assistant form is still emerging in public developer communities.

The security issues we are seeing are no surprise when users are unleashing a quickly developed autonomous agent on their systems, granting access to files, credentials, APIs, and workflows.

Our advice is to let early adopters and those who have less to lose work out the kinks instead of jumping on the bandwagon and putting your organization at risk.

Meanwhile, make it a priority to define formal policies around personal AI agents connecting to corporate systems.

Excitement about OpenClaw is justified, as we’re on the precipice of something transformative. Just remember, installing it today is less a productivity upgrade and more of a security and operational decision.

Platform restrictions, like Anthropic’s shift away from flat-rate subscription usage for third-party agents like OpenClaw, are an early sign that the ecosystem is still stabilizing.

Choose accordingly.