Researchers Uncover 341 Malicious ClawHub Skills Targeting OpenClaw Users
These articles are AI-generated summaries. Please check the original sources for full details.
Researchers Find 341 Malicious ClawHub Skills Stealing Data from OpenClaw Users
A recent security audit conducted by Koi Security has uncovered 341 malicious skills on ClawHub, a marketplace for OpenClaw users, which have been found to be stealing sensitive data and spreading malware such as Atomic Stealer. The malicious skills, codenamed ClawHavoc, have been designed to masquerade as legitimate skills, including cryptocurrency tools, YouTube utilities, and finance tools, and have been targeting both macOS and Windows systems.
Why This Matters
The discovery of these malicious skills highlights the risks associated with open-source ecosystems, where threat actors can easily upload malicious content and exploit vulnerabilities. The fact that ClawHub is open by default and allows anyone to upload skills, with minimal restrictions, has made it an attractive target for malicious actors. The use of sophisticated social engineering tactics to convince users to execute malicious commands has also made it difficult for users to detect and prevent these attacks, resulting in significant financial losses and compromised sensitive data.
Key Insights
- 341 malicious skills were found on ClawHub, with 335 using fake pre-requisites to install Atomic Stealer: Koi Security, 2026
- The malicious skills use social engineering tactics to convince users to execute malicious commands, stealing crypto assets, wallet private keys, SSH credentials, and browser passwords: Paul McCarty, 2026
- OpenClaw’s creator has rolled out a reporting feature to allow signed-in users to flag malicious skills, with skills having more than 3 unique reports being auto-hidden by default: Peter Steinberger, 2026
Practical Applications
- Use Case: OpenClaw users can use the reporting feature to flag suspicious skills and prevent the spread of malware, as seen in the case of the ClawHavoc campaign.
- Pitfall: Users should be cautious when installing skills from ClawHub, as malicious actors can easily upload malicious content, and should always verify the authenticity of the skills and the publishers before installation.
References:
Continue reading
Next article
Resolving Java Compiler Error: Package Does Not Exist
Related Content
‘CrashFix’ Scam Crashes Browsers, Delivers Malware
The 'CrashFix' scam utilizes a malicious browser extension, intentional crashes, and a Python-based RAT to compromise systems, targeting both home users and corporate networks.
Indian Users Targeted in Tax Phishing Campaign Delivering Blackmoon Malware
A sophisticated cyber espionage campaign targets Indian users with tax phishing, deploying Blackmoon malware and abusing SyncFuture TSM tools for data theft.
Mustang Panda Deploys Updated COOLCLIENT Backdoor in Government Cyber Attacks
China-linked Mustang Panda used updated COOLCLIENT malware in 2025 to steal data from government and telecom targets, affecting Asia and Russia with comprehensive data theft from infected endpoints.