Ethical Hacking News
New malware campaign targets OpenClaw users via ClawHub: 341 malicious skills have been discovered, delivering information-stealing malware to macOS and Windows systems. The attack highlights the growing concern for supply chain security in the face of evolving threats.
Threat actors exploit vulnerabilities in open-source ecosystems, with a recent discovery on ClawHub shedding light on malicious skills called ClawHavoc. 341 malicious skills were found to steal sensitive data from users running OpenClaw, an AI assistant for automation and productivity. The malicious skills masquerade as legitimate tools and deliver information-stealing malware to macOS and Windows systems once installed. The attack targets specific vulnerabilities in the OpenClaw platform and requires user action to trigger the malware delivery. The discovery highlights the importance of maintaining vigilance in the face of emerging threats and the need for supply chain security. Palo Alto Networks notes that OpenClaw's design makes it vulnerable to stateful, delayed-execution attacks that amplify risks associated with using open-source AI platforms.
Threat actors continue to exploit vulnerabilities in open-source ecosystems, and a recent discovery has shed light on the growing threat of malicious skills on the popular skill-sharing platform, ClawHub. The malicious skills, codenamed ClawHavoc, have been found to steal sensitive data from users running OpenClaw, an AI assistant designed for automation and productivity.
In a security audit conducted by Koi Security, 2,857 skills were analyzed, revealing 341 malicious skills that pose a significant risk to users. The malicious skills are designed to masquerade as legitimate tools, such as cryptocurrency trading automation tools, finance and social media tools, and YouTube utilities. However, once installed, they deliver information-stealing malware to macOS and Windows systems.
The malware used in these attacks is sophisticated and targets specific vulnerabilities in the OpenClaw platform. The skills require users to install additional software or execute malicious commands, which then steal sensitive data such as exchange API keys, wallet private keys, SSH credentials, and browser passwords. This behavior is reminiscent of more complex supply chain attacks, where multiple components are exploited to achieve a nefarious goal.
The discovery of these malicious skills highlights the importance of maintaining vigilance in the face of emerging threats. OpenClaw's creator, Peter Steinberger, has since implemented a reporting feature that allows signed-in users to flag suspicious skills. However, this measure may not be enough to prevent all types of attacks, as threat actors continue to evolve and exploit vulnerabilities.
The intersection of AI capabilities, persistent memory, and social engineering tactics poses significant challenges for security researchers and developers. As noted by Palo Alto Networks, OpenClaw's design makes it vulnerable to stateful, delayed-execution attacks that can be triggered even after the initial exploit has failed. This type of attack amplifies the risks associated with using open-source AI platforms.
The case of ClawHavoc also underscores the need for supply chain security to become a top priority for organizations and individuals. The use of open-source ecosystems should not come at the expense of security, as recent examples demonstrate all too well. As cybersecurity experts continue to sound the alarm about emerging threats, it is crucial that users remain vigilant and take proactive steps to protect themselves against these types of attacks.
In conclusion, the malicious skills discovered on ClawHub highlight the importance of supply chain security in the face of evolving threats. As AI capabilities become increasingly sophisticated, so too do the tactics used by threat actors. It is essential for organizations and individuals to stay informed about emerging risks and take proactive steps to protect themselves against these types of attacks.
New malware campaign targets OpenClaw users via ClawHub: 341 malicious skills have been discovered, delivering information-stealing malware to macOS and Windows systems. The attack highlights the growing concern for supply chain security in the face of evolving threats.
Related Information:
https://www.ethicalhackingnews.com/articles/New-Malware-Campaign-Targets-OpenClaw-Users-via-ClawHub-A-Growing-Concern-for-Supply-Chain-Security-ehn.shtml
https://thehackernews.com/2026/02/researchers-find-341-malicious-clawhub.html
https://www.koi.ai/blog/clawhavoc-341-malicious-clawedbot-skills-found-by-the-bot-they-were-targeting
Published: Mon Feb 2 13:39:55 2026 by llama3.2 3B Q4_K_M
