Home
News
Details

OpenClaw's ClawHub Plugin Hub Targeted by Malware Attacks

iconKuCoinFlash
Share
Share IconShare IconShare IconShare IconShare IconShare IconCopy
AI summary iconSummary

expand icon
CFT frameworks face new threats as malware targets ClawHub, the plugin hub for OpenClaw's AI agent project. SlowMist reported 341 malicious skills disguised as crypto assets or automation tools. Attackers used Base64-encoded commands in SKILL.md files to bypass detection. The malware uses a two-stage loading process—curl fetches the payload, then a sample named dyrtvwjfveyxjf23 steals system data. Users are warned to avoid unverified commands and rely on official channels. Risk-on assets remain vulnerable amid such supply chain attacks.

BlockBeats news, on February 9, SlowMist issued a security alert. Recently, the open-source artificial intelligence agent project OpenClaw has unexpectedly become popular, and its official plugin center ClawHub is gradually becoming a new target for supply chain poisoning attacks, posing potential security risks to developers and users. Monitoring has identified 341 malicious skills, which are often disguised as encrypted assets, security checks, or automation tools.


Attackers use the SKILL.md file as an entry point for executing instructions, hiding malicious commands through Base64 encoding, and employ a two-stage loading mechanism to evade detection. In the first stage, curl is used to fetch the payload, and in the second stage, a sample named dyrtvwjfveyxjf23 is deployed, deceiving users into entering their system password and stealing local documents and system information. Users are advised to review any commands that need to be copied and executed, be cautious of prompts requesting system privileges, and prioritize obtaining tools through official channels.

Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information. Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.