Registration
 
All news
Top Stories
Editors' Picks
Crypto
Financial News
Currencies
Market Voices
Companies
Regulators
Central Banks
Anastasiia Chabaniuk
Anastasiia Chabaniuk

Hackers exploit OpenClaw popularity in phishing attacks

Hackers exploit OpenClaw popularity in phishing attacks
Scammers target OpenClaw developers via GitHub and fake airdrops

Cybercriminals have launched a phishing campaign targeting OpenClaw developers, using fake GitHub accounts and promises of crypto rewards. Victims are told they have won $5,000 in $CLAW tokens and are redirected to a spoofed website.

According to OX Security, attackers create fake repositories and tag dozens of developers in GitHub issues to make the scam appear more credible.

Scope of the attack

The link leads to a website that mimics the official OpenClaw platform and includes a wallet connection button — the point where funds are stolen.

Technical analysis shows the malicious code is hidden in an obfuscated JavaScript file and communicates with a separate command-and-control server. Once a wallet is connected, transaction data and wallet addresses are sent to attackers, while a built-in function can erase traces of activity to hinder investigation.

The campaign appeared recently, with most fake accounts created and deleted within hours. No confirmed victims have been reported so far, but researchers warn the attack appears targeted, particularly at users who interacted with OpenClaw repositories on GitHub.

About the project

OpenClaw is an open-source autonomous AI agent (personal assistant) created by developer Peter Steinberger, founder of PSPDFKit. The project launched in November 2025, initially under the names Clawdbot and Moltbot before adopting its current branding.

The agent runs locally on a computer or server (Mac, Windows, Linux), allowing users to keep data private without relying on external cloud services. It integrates with messaging platforms such as Telegram, WhatsApp, Discord, Slack and Signal, and can perform real-world tasks including managing emails, sending messages, working with files, searching the web and automating workflows.

OpenClaw uses large language models (Claude, GPT or local models), features persistent memory and can operate autonomously, making it a tool for personal automation rather than just a chatbot.

Its rapid rise — gaining hundreds of thousands of GitHub stars — has made it an attractive target for scammers. Additional attention from its links to OpenAI and the broader AI agent trend has further increased its visibility.

How to stay safe

Experts advise avoiding suspicious links, not connecting crypto wallets to unknown websites and treating any “airdrop” or reward offers with caution. Users who may have connected their wallets to suspicious sites should immediately revoke all permissions to minimize potential losses.

Earlier, the U.S., U.K. and Canada launched a joint operation targeting crypto phishing schemes.

This material may contain third-party opinions, none of the data and information on this webpage constitutes investment advice according to our Disclaimer. While we adhere to strict Editorial Integrity, this post may contain references to products from our partners.

Editor's Picks for You

Bitcoin price prediction based on RSI: Is BTC poised for a new rally?
  • By Oleg Tkachenko
  • 16 hours ago
Bitcoin price prediction based on RSI: Is BTC poised for a new rally?
Editors' Picks
Toncoin becomes Gram: Why Durov restored token's original name
  • By Anastasiia Chabaniuk
  • Yesterday
Toncoin becomes Gram: Why Durov restored token's original name
Editors' Picks
Why Tether flipping Ethereum is a pivotal moment for crypto
  • By Kyle Torpey
  • 15.06.2026
Why Tether flipping Ethereum is a pivotal moment for crypto
Editors' Picks
All Editors' Top Picks

Latest Crypto News

Illinois enacts 0.2% digital asset tax in FY2027 budget plan
  • By Ciaran Ryan
  • 6 hours ago
Illinois enacts 0.2% digital asset tax in FY2027 budget plan
Crypto
#Crypto #Cryptoreg #USA
Illinois approves digital asset tax in state budget
  • By Dan Blystone
  • 8 hours ago
Illinois approves digital asset tax in state budget
Crypto
#Crypto #Cryptoreg #USA
Kalshi expands perpetual futures market after reaching $5.5 billion in trading volume
  • By Pavlo Kot
  • 10 hours ago
Kalshi expands perpetual futures market after reaching $5.5 billion in trading volume
Crypto
#Crypto #Kalshi #Prediction Markets
All Crypto News
  • Oleg Tkachenko
  • 16 hours ago
Bitcoin price prediction based on RSI: Is BTC poised for a new rally?
  • Anastasiia Chabaniuk
  • Yesterday
Toncoin becomes Gram: Why Durov restored token's original name
  • Kyle Torpey
  • 15.06.2026
Why Tether flipping Ethereum is a pivotal moment for crypto
  • Eugene Komchuk
  • 15.06.2026
MiCA deadline: Why crypto companies are leaving Europe
  • Mikhail Vnuchkov
  • 13.06.2026
From “Holy Trinity” to WLD crash: How Arthur Hayes became a market-moving seller
  • Yaroslav Dmytrenko
  • 13 min ago
Corey Hoffstein: Trend following returns often stem from related markets moving together
  • Anastasiia Chabaniuk
  • 22 min ago
American Financing offers rates starting at 6.327 percent for qualified borrowers, Tucker Carlson notes
  • Jose Antonio Gastelum
  • 23 min ago
Coinbase users support economic advancement, Brian Armstrong notes
  • Mikhail Vnuchkov
  • 48 min ago
Alex Krüger: FOMC press conference losing volatility role in financial markets
  • Eugene Komchuk
  • 48 min ago
Eric Basmajian: Leading economic indicators reviewed for current cycle
Weekly Top Bonuses
up to $2,500
deposit bonus for all clients
CLAIM BONUS
Your capital is at risk.
Top News
  • Andrey Mastykin
  • 10 hours ago
Fed expected to hold rates at Warsh first meeting
Fed expected to hold rates at Warsh first meeting
  • Andrey Mastykin
  • 13 hours ago
IEA warns of weaker oil demand and supply surplus by 2027
IEA warns of weaker oil demand and supply surplus by 2027
  • Eugene Komchuk
  • 14 hours ago
Traders Union research: 58% of crypto investors have encountered scams
Traders Union research: 58% of crypto investors have encountered scams
  • Parshwa Turakhiya
  • 16 hours ago
Sam Bankman-Fried weighs token launch after prison sentence
Sam Bankman-Fried weighs token launch after prison sentence
  • Ivan Andriyenko
  • 17 hours ago
U.S. futures rise before Fed rate decision
U.S. futures rise before Fed rate decision
Live News
  • Mykhailo Ihnatenko
  • Now
FDA boost lifts Moderna shares: Can MRNA extend rally?
  • Anton Kharitonov
  • Now
Alphabet maintains uptrend as key resistance test approaches
  • Mykhailo Ihnatenko
  • Now
SpaceX and robotaxis put Tesla under pressure
  • Anton Kharitonov
  • Now
Microsoft holds above major support as long-term uptrend remains intact
  • Mykhailo Ihnatenko
  • Now
AMD rallies on AI growth as insider selling raises concerns
Who We Are
Business Solutions
For Users
TU News
Popular Sections
Disclosures
CONTACT US
Legal
We are in Social Media
© IAFT Ltd., 2010-2026 All rights to the website are owned by IAFT Ltd.,
Registration number - HE 336186
  • Risk disclosure:

    Information on the TradersUnion.com website is for informational purposes only and does not constitute any motive or suggestion to visitors to invest money. Moreover, we hereby warn you that trading on the Forex and CFD markets is always a high risk. According to the statistics, 75-89% of customers lose the funds invested and only 11-25% of traders earn a profit. Trading in futures and options carries substantial risk of loss and is not suitable for every investor.

    That is why you should only invest money that you are prepared — or can afford — to lose at such high risks. Tradersunion.com does not provide any financial services, including investment or financial advisory services. Also, the Traders Union is not a broker and does not get money for trading in the Forex or CFD markets. Our website only provides information on brokers and the markets and helps its users to select the best brokerage company based on detailed information and objective analysis of brokers.

  • Disclaimer:

    Traders Union (TradersUnion.com) shall not be liable for the consequences of trading decisions made by the Client and for the possible loss of his capital resulting from the use of this website and information published on it.

    Forex market, CFD and cryptocurrency trading involves high risks and is not suitable for everyone. Before investing money, you need to adequately assess the level of your expertise and be aware of the risks, particularly in the context of trading with leverage. The information on this website is not intended for distribution or use by any person in any country or jurisdiction, where such distribution or use would be in violation of the local law or regulation. Any payments by Traders Union (TradersUnion.com) to the users of our website shall be legally interpreted solely as an incentive on our part for the activity on the website in the form of a deduction of a part of the advertising income; they shall not be a subject of any claims of our users or our obligations, a subject of disputes, as well as cannot be considered in relation to the services provided to users by brokers, both in fact and in their completeness and volume. The administration of the website shall not be liable for the content of user comments and reviews about the companies and shall not verify whether the authors of the reviews are indeed real clients of a specific company. All reviews, both negative and positive are published on the website without verification of their reliability; only offensive reviews that call for violence or any kind of discrimination and also reviews published from one group of IP addresses are moderated and removed. The authors of the materials shall be fully liable for the accuracy, completeness and impartiality of any information in the articles and reviews, including in the context of their use or mention of any brand names or trademarks. All mentions of the names of companies and their brands in any materials on the website shall be made in the context of communication of socially important information to the people about their activities by independent journalists, who are the authors. All evaluations and indicators on the website express the subjective opinion of the authors of the reviews (articles) and shall not be viewed as accurate statements and be a subject of disputes and claims against Traders Union.

  • Disclosure of advertisers and revenues:

    All the services on the Tradersunion.com website are free for you to use. Our team spends thousands of hours per annum researching brokers and gathering information about them to help investors all over the world to choose reliable companies and to avoid fraudsters.

    Indeed, the curating, sourcing, and organization of this process requires substantial financial investment by Tradersunion.com, which the website earns in the form of advertising payments. There are two types of advertising services on the website — direct advertising or partner (broker) participation programs. However, no services purchased by our partners shall affect the recommendations on our website, or our opinions, or ratings. Our ratings are based on our objective rating criteria and methodology; and the results are always equally and fairly applied to each broker. The work of our content authors and research groups does not involve any interaction with our advertisers and they do not have access to data concerning the amount of advertising purchased. For over 10 years we consider our independence, absolute openness, and objectivity as our main priority. Please follow the links to each of our affiliated broker’s websites. This will help Tradersunion.com to continue to provide our services to you for free.

onepercentfortheplanet.org World Association of News Publishers https://gdpr.eu/ GDPR