ClawHavoc: 341 Malicious Skills Found
Major supply chain attack discovered by Koi Security: 341 malicious skills on ClawHub (12% of registry), with 335 from ClawHavoc campaign delivering Atomic macOS Stealer (AMOS). Professional documentation disguised as legit crypto, YouTube, and finance tools. Targets API keys, wallet private keys, SSH credentials, browser passwords, and ~/.clawdbot/.env. Single C2 IP: 91.92.242.30
Details
341 malicious skills on ClawHub (335 from one campaign). Deployed Atomic macOS Stealer (AMOS). Targeted crypto (111), YouTube (57), finance (51). Professional documentation disguised as legit tools
Related Resources
21,639 Exposed OpenClaw Instances Found
Censys security scan identified 21,639 OpenClaw instances exposed to public internet without authentication. Over 30% running on Alibaba Cloud. Represents massive attack surface with private messages, API keys, and OAuth credentials accessible. 21x growth in under one week demonstrates rapid adoption and exposure.
Official Security Documentation
Comprehensive official security documentation covering OpenClaw's threat model, access control, authentication modes, sandboxing, DM pairing policies, tool permissions, and incident response. Details the security audit command, credential storage locations, and hardening best practices.
What Security Teams Need to Know About OpenClaw
Enterprise security assessment with detection guidance. Covers visibility via Falcon platform, discovery of OpenClaw deployments, removal workflows, prompt injection threats, and runtime protection with Falcon AIDR. Demonstrates blocking prompt injection attacks and provides enterprise-scale detection/response capabilities.