RT MSB Intel (@MSBIntel)🚨 THE #1 AI SKILL ON OPENCLAW WAS LITERALLY MALWARE.THE AI REVOLUTION JUST FACED A CATASTROPHIC SUPPLY CHAIN ATTACK.1,184 MALICIOUS PLUGINS FLOODED THE CLAWHUB MARKETPLACE.THE BREAKDOWN OF THE CLAWHAVOC CAMPAIGN IS BRUTAL:THE ONLY BARRIER TO PUBLISH A SKILL WAS A 1-WEEK-OLD GITHUB ACCOUNT.ATTACKERS UPLOADED PACKAGES DISGUISED AS CRYPTO BOTS, WALLET TRACKERS, AND YOUTUBE TOOLS.THE FLAWLESS DOCUMENTATION IN THE https://t.co/doEr7Gw6Dl FILES TRICKED USERS INTO RUNNING A SINGLE TERMINAL ...

Google says its AI systems helped deter Play Store malware in 2025 https://t.co/UwQLVXJ8Fd ...

🚨WARNING: X USER REVEALS #1 SKILL DOWNLOADED ON OPENCLAW WAS A MALWARE!According to a post by @Chiefofautism, the #1 most downloaded skill on the OpenClaw marketplace was allegedly malware designed to steal sensitive user data.OpenClaw operates a skill marketplace called ClawHub, where users can upload plugins that grant AI agents new capabilities.The post claims that marketplace safeguards were minimal, allowing accounts as new as one week old to publish packages.The post also claims that a top-ranked skil ...

if you are paying for the product, you're a lot safer. So, OpenClaw, there's a reason why uh we saw that there was malware in hundreds of the skill add-ons in the marketplace on OpenClaw. Like one of the one password execs said it was an attack surface. So, basically, it was a security nightmare. It was free. Other companies that offer like paid products, you're a little safer. But the problem is, even if they voluntarily comply with certain frameworks and guidelines and stuff, they can always change their ...

Google Warns of AI-Powered North Korean Malware Campaign Targeting Crypto, DeFihttps://t.co/a88DGQ5aHQ ...

SlowMist reports supply chain poisoning in OpenClaw's ClawHub plugin center. Weak reviews allowed numerous malicious skills to infiltrate and spread harmful code. Koi Security scanned 2,857 skills, identifying 341 malicious. SlowMist analyzed >400 IOCs, revealing organized batch attacks targeting few fixed domains/IPs via two-stage loading (initial obfuscation, dynamic payload retrieval). Example: "X (Twitter) Trends" skill hides Base64 backdoor that downloads/executes malware to phish passwords, collect fi ...

🚨JUST IN: TOP DOWNLOADED SKILL ON CLAWHUB FOUND TO BE MALWAREThe top-downloaded AI skill on Clawhub is a "twitter skill" that requires a downloaded and install of what appears to be malwareIt is one of the most frequently downloaded AI skills on the hub https://t.co/cfaFCgxAIr ...

Google Confirms 40% Of All Android Phones At Risk From New AttacksGoogle has just confirmed that more than 40% of all Android phones are now at risk from new malware and spyware attacks. If you’re one of those affected, you really must act now. https://t.co/p12YR90mPD (Photo: Getty Images) ...

🚨 ALERT: Around 149M user credentials were exposed in a massive infostealer data dump, including roughly 420k Binance-related logins.The leak originated from malware-infected devices, not a Binance breach. https://t.co/XntBkedRJg ...

Security researcher Jeremiah Fowler disclosed a leaked Infostealer dataset with ~149 million records, including ~420,000 Binance login credentials from malware-infected user devices (affecting Gmail, Facebook, Instagram, Netflix, etc.). Experts emphasize this is not a Binance system breach but user-end infections. Binance will monitor the dark web, notify affected users, reset passwords, and recommend hardware MFA, antivirus software, and enhanced account security. https://t.co/S8LkERvcxK ...