logo

More Malicious OpenClaw Skills Threaten AI Supply Chain

ID: ab5e9182-fe27-5bdf-97c0-dc73439c35c2

STIX ID: report--ab5e9182-fe27-5bdf-97c0-dc73439c35c2

Feed Name: Dark Reading

Threat Score
70/100

Date Published: 2026-06-24

Date Updated: 2026-06-25

Author: Elizabeth Montalbano

...
...

Unit 42 identified five malicious OpenClaw marketplace skills on ClawHub that perform credential theft (macOS infostealers), evade automated scanners by abusing file-size and README padding, and enable novel agentic financial abuse (affiliate injection and a meme-token pump-and-dump). The skills bypassed ClawHub defenses, were removed after reporting, and researchers warn that such agentic-supply-chain threats can scale across organizations using OpenClaw unless stronger provenance, runtime monitoring, and line-by-line audits are enforced.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.