Subscribe to the Non-Human & AI Identity Journal

Forums
The Non-Human & AI ...
NHI, AI & IAM Breac...
Clawdbot gateway pr...
 
Notifications
Clear all

Clawdbot gateway probing shows where AI agent controls break down

 
    Last Post
  RSS

 NHI Mgmt Group
(@nhi-mgmt-group)
Member Moderator
Joined: 1 year ago
Posts: 6713
Topic starter 23/06/2026 9:20 pm  

TL;DR: Exposed Clawdbot gateway instances were probed by protocol-aware attackers within minutes, using direct WebSocket exploitation, protocol downgrades, and client impersonation to reach credentials, conversation history, and multi-node infrastructure maps, according to Pillar Security research.

NHIMG editorial — based on content published by Pillar Security: Caught in the Wild: Real Attack Traffic Targeting Exposed Clawdbot Gateways

Questions worth separating out

Q: What breaks when an AI agent gateway trusts reverse-proxy traffic as local?

A: The boundary between internal and external access collapses.

Q: Why do exposed agent gateways increase NHI risk across connected services?

A: Because the gateway often stores or brokers the credentials needed to reach those services.

Q: How do security teams know whether an agent gateway is overexposed?

A: Look for methods that reveal configuration, session content, or connected infrastructure from the same control plane that processes user commands.

Practitioner guidance

  • Enforce authentication on every gateway entry point Require explicit auth before any WebSocket method, session lookup, or config retrieval can execute.
  • Harden reverse proxy handling for agent gateways Define trusted proxy boundaries, validate forwarded headers, and fail closed when proxy metadata is missing or inconsistent.
  • Redact secrets from any config-returning method Treat config endpoints as disclosure risks and return only the minimum metadata needed for administration.

What's in the full article

Pillar Security's full research covers the operational detail this post intentionally leaves for the source:

  • Raw honeypot payloads and the exact WebSocket methods attackers tried against exposed gateways
  • Commit-level analysis showing which code changes closed the auth bypasses and proxy trust failures
  • Per-probe traffic breakdown that helps teams prioritise which gateway methods are being targeted most often
  • A practical patch and isolation checklist for teams running Clawdbot in production or exposed test environments

👉 Read Pillar Security's analysis of real attack traffic targeting exposed Clawdbot gateways →

Clawdbot gateway probing shows where AI agent controls break down?

Explore further

View Full Forum →  |  NHI Foundation Course →



   
Quote
Topic Tags
pillar-security agentic-ai gateway-security credential-exposure protocol-attacks
Forum Jump:
  Previous Topic
Next Topic  
Related Topics
Topic Tags:  pillar-security (42) , agentic-ai (929) , gateway-security (2) , credential-exposure (18) , protocol-attacks (1) ,
Share:

#1 Authority in NHI Education, Research and Advisory, empowering organizations to tackle the critical risks posed by Non-Human Identities (NHIs), including AI Agents.

Get in Touch

Quick Links

Legal & Policies

©2025 NHIMG. All right reserved.