Top-Ranked Skill on OpenClaw Marketplace Contained Malware

The post reports that the top-ranked skill on OpenClaw’s ClawHub marketplace, disguised as legitimate software (e.g., crypto bots or YouTube summarizers), contained malicious code. Attackers exploited lax publishing rules—requiring only a one-week-old GitHub account—to upload 1,184 malicious skills, including 677 from a single threat actor. These skills stole SSH keys, crypto wallets, browser cookies, and installed malware like Atomic Stealer or opened reverse shells for remote control. The most popular skill, What Would Elon Do, had nine vulnerabilities, including two critical, and silently exfiltrated data while bypassing safety measures.