PANews
PANews|Mar 19, 2026 05:19
[Phishing Campaign Targeting OpenClaw Developers on GitHub Uses Fake Airdrops to Steal Crypto Wallet Funds] According to Decrypt, security platform OX Security has revealed that developers of the AI agent project OpenClaw are being targeted by cryptocurrency phishing campaigns. Attackers create fake GitHub accounts, initiate issues in repositories controlled by them, and @mention dozens of developers, claiming they have won a $5,000 CLAW token reward. They then direct victims to a cloned website that is almost identical to openclaw.ai. The phishing site includes an additional 'Connect Wallet' button designed to steal assets from connected wallets. Malicious code is hidden within deeply obfuscated JavaScript files, featuring a 'nuke' function that clears browser local storage data to hinder forensic analysis. It encodes wallet addresses, transaction values, and other information before transmitting them back to a C2 server. Researchers have identified a suspected crypto wallet address used to receive stolen funds. The related account was created last week and deleted within hours, with no confirmed victims as of now. OpenClaw has become a target for scammers due to its high visibility, and its Discord community previously faced a wave of cryptocurrency spam messages. Earlier reports indicated that OpenClaw's founder had warned users to beware of cryptocurrency scam emails impersonating OpenClaw.
+4
Mentioned
Share To

Timeline

HotFlash

APP

X

Telegram

Facebook

Reddit

CopyLink

Hot Reads