ClawdBot Skills ganked all my crypto

Published: 3 months ago (January 30, 2026 at 01:07 PM EST)

1 min read

Source: Hacker News

Article Details

Article URL: https://opensourcemalware.com/blog/clawdbot-skills-ganked-your-crypto
Comments URL: https://news.ycombinator.com/item?id=46827731
Points: 133
Comments: 62

Infostealers added Clawdbot to their target lists before most security teams knew it was running

Clawdbot's MCP implementation has no mandatory authentication, allows prompt injection, and grants shell access by design. Monday's VentureBeat article document...

Malicious MoltBot skills used to push password-stealing malware

More than 230 malicious packages for the personal AI assistant OpenClaw formerly known as Moltbot and ClawdBot have been published in less than a week on the to...

Security Bite Podcast: It’s all about infostealers

9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do...

Notepad++ says Chinese government hackers hijacked its software updates for months

The developer of the popular text editor Notepad++ said hackers associated with the Chinese government hijacked its software update mechanism to deliver tainted...

Article Details

Related posts

Infostealers added Clawdbot to their target lists before most security teams knew it was running

Malicious MoltBot skills used to push password-stealing malware

Security Bite Podcast: It’s all about infostealers

Notepad++ says Chinese government hackers hijacked its software updates for months