{"id":10872,"date":"2026-02-23T10:04:05","date_gmt":"2026-02-23T10:04:05","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2026\/02\/23\/google-suspends-openclaw-users-from-antigravity-ai-after-oauth-token-abuse\/"},"modified":"2026-02-23T10:04:05","modified_gmt":"2026-02-23T10:04:05","slug":"google-suspends-openclaw-users-from-antigravity-ai-after-oauth-token-abuse","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2026\/02\/23\/google-suspends-openclaw-users-from-antigravity-ai-after-oauth-token-abuse\/","title":{"rendered":"Google Suspends OpenClaw Users from Antigravity AI After OAuth Token Abuse"},"content":{"rendered":"<p>    Google Suspends OpenClaw Users from Antigravity AI After OAuth Token Abuse<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>\n<p>Google has suspended access to its Antigravity AI platform for <a href=\"https:\/\/cybersecuritynews.com\/openclaw-ai-agent-skills-abused\/\" target=\"_blank\" rel=\"noreferrer noopener\">numerous users of the open-source tool OpenClaw<\/a>, sparking backlash over aggressive enforcement of terms of service (ToS).<\/p>\n<p>The move targets developers leveraging OpenClaw\u2019s OAuth plugin to tap into subsidized Gemini model tokens, which caused backend spikes and service degradation.<\/p>\n<p>OpenClaw, launched in November 2025, exploded in popularity with over 219,000 GitHub stars, enabling local AI agents for tasks like email management and web browsing. Users authenticated via Google\u2019s Antigravity, its developer-facing Gemini AI platform, bypassing official channels to access high-end models like Gemini 2.5 Pro at reduced costs.<\/p>\n<p>This third-party integration violated Google\u2019s ToS by powering non-Antigravity products with Antigravity infrastructure, leading to \u201cmalicious usage\u201d patterns flagged by automated systems.<\/p>\n<h2 class=\"wp-block-heading\" id=\"the-suspension-wave\"><strong>The Suspension Wave<\/strong><\/h2>\n<p><a href=\"https:\/\/discuss.ai.google.dev\/t\/250-mo-ultra-subscriber-banned-without-warning-the-openclaw-mass-ban-wave-shows-a-systemic-failure-in-googles-developer-support\/123015\/25\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Reports surfaced mid-February 2026 on Google\u2019s AI Developer Forum<\/a>, where AI Ultra subscribers paying $249.99 monthly faced sudden 403 errors and full account restrictions without warnings.<\/p>\n<p>Affected users lost not only Antigravity and Gemini CLI access but, in some cases, Gmail, Workspace, and even decades-old account histories, prompting accusations of overreach.<\/p>\n<p>Varun Mohan, Google DeepMind product lead and former Windsurf CEO, publicly addressed the surge on X (formerly Twitter), stating it \u201ctremendously degraded the quality of service for our users.\u201d He emphasized prioritizing \u201cactual users\u201d while offering a limited reinstatement path for unaware violators, amid capacity constraints.<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<div class=\"embed-twitter\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">Just to add some clarification, we have purely blocked usage of the Antigravity product for these users. All your other Google services (and Google AI services) are unaffected. It is not intended to use the Antigravity backend as a proxy for other products and users in these\u2026<\/p>\n<p>\u2014 Varun Mohan (@_mohansolo) <a href=\"https:\/\/twitter.com\/_mohansolo\/status\/2025857873096626673?ref_src=twsrc%5Etfw\">February 23, 2026<\/a>\n<\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n<\/div>\n<\/div>\n<\/figure>\n<p>The crackdown echoes Anthropic\u2019s recent ToS update explicitly banning third-party OAuth in tools like OpenClaw, citing token arbitrage and debugging issues from anomalous traffic.<\/p>\n<p>Cybersecurity experts highlight <a href=\"https:\/\/cybersecuritynews.com\/1-click-clawdbot-vulnerability-enable-malicious-remote-code-execution-attacks\/\" target=\"_blank\" rel=\"noreferrer noopener\">OpenClaw\u2019s vulnerabilities<\/a>, exacerbating the fallout: over 21,000 exposed instances vulnerable to infostealers targeting config files, plus supply chain attacks.<\/p>\n<p>China\u2019s industry ministry warned of risks from misconfigured systems that enable cyberattacks and data breaches, underscoring the double-edged sword of agentic AI. Peter Steinberger, the creator of OpenClaw who recently joined OpenAI to advance personal agents, decried Google\u2019s \u201cdraconian\u201d bans and announced plans to drop Antigravity support.<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<div class=\"embed-twitter\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">Pretty draconian from Google. Be careful out there if you use Antigravity. I guess I&#8217;ll remove support. <\/p>\n<p>Even Anthropic pings me and is nice about issues. Google just\u2026 bans? <a href=\"https:\/\/t.co\/JBq9YCB7nB\">https:\/\/t.co\/JBq9YCB7nB<\/a><\/p>\n<p>\u2014 Peter Steinberger <img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/s.w.org\/images\/core\/emoji\/17.0.2\/72x72\/1f99e.png?ssl=1\" alt=\"\ud83e\udd9e\" class=\"wp-smiley\" style=\"height: 1em; max-height: 1em;\"> (@steipete) <a href=\"https:\/\/twitter.com\/steipete\/status\/2025743825126273066?ref_src=twsrc%5Etfw\">February 23, 2026<\/a>\n<\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n<\/div>\n<\/div>\n<\/figure>\n<p>The community is pivoting to thriving forks like Nanobot and IronClaw, while OpenAI endorses third-party harnesses, widening competitive rifts. This turf war signals a shift to closed AI ecosystems, forcing developers to weigh convenience against ToS and security perils.<\/p>\n<p>As AI agents proliferate, such enforcements remind users that subsidized access often hides backend costs, and ban waves can wipe out productivity tools overnight.<\/p>\n<p class=\"has-text-align-center has-background\" style=\"background:linear-gradient(180deg,rgb(238,238,238) 94%,rgb(169,184,195) 100%)\"><strong>Follow us on <a href=\"https:\/\/news.google.com\/publications\/CAAqMggKIixDQklTR3dnTWFoY0tGV041WW1WeWMyVmpkWEpwZEhsdVpYZHpMbU52YlNnQVAB?hl=en-IN&amp;gl=IN&amp;ceid=IN:en\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Google News<\/a>, <a href=\"https:\/\/www.linkedin.com\/company\/cybersecurity-news\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">LinkedIn<\/a>, and <a href=\"https:\/\/x.com\/cyber_press_org\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">X<\/a> for daily cybersecurity updates. <a href=\"https:\/\/cybersecuritynews.com\/contact-us\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Contact us<\/a> to feature your stories.<\/strong><\/p>\n<p>The post <a href=\"https:\/\/cybersecuritynews.com\/google-suspends-openclaw-users\/\">Google Suspends OpenClaw Users from Antigravity AI After OAuth Token Abuse<\/a> appeared first on <a href=\"https:\/\/cybersecuritynews.com\/\">Cyber Security News<\/a>.<\/p>\n<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Guru Baran<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/cybersecuritynews.com\/google-suspends-openclaw-users\/\">Go to cyber-security-news<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Google Suspends OpenClaw Users from Antigravity AI After OAuth Token Abuse Google has suspended access to its Antigravity AI platform for numerous users of the open-source tool OpenClaw, sparking backlash over aggressive enforcement of terms of service (ToS). The move targets developers leveraging OpenClaw\u2019s OAuth plugin to tap into subsidized Gemini model tokens, which caused [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[129,63],"tags":[130],"class_list":["post-10872","post","type-post","status-publish","format-standard","hentry","category-cyber-security","category-cyber-security-news","tag-cyber-security-news"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/10872"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=10872"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/10872\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=10872"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=10872"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=10872"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}