From Shadow IT to Shadow AI: Clawdbot (Moltbot) and the Rise of Unmanaged Agent Gateways

**Executive summary:** This report analyzes the rise of unmanaged, agentic AI gateways (exemplified by Clawdbot/Moltbot) that are often misconfigured to listen on public ports (default 18789) or proxied insecurely, exposing persistent prompt histories, provider API keys, and integration tokens; the authors measured hundreds of reachable instances and detail exploitation scenarios (quota theft, lateral movement via malicious skills) and defensive controls such as binding to loopback, reverse proxy hardening, secret management, segmentation, and observability.