Industry Newsopenclawsupply chainmacosatomic stealer

Koi Security Finds Malicious Skills on ClawHub

|February 3, 2026

8.1

Relevance Score

Koi Security Finds Malicious Skills on ClawHub — Photo: blogger.googleusercontent.com · rights & takedowns

On Feb. 3, 2026, Koi Security audited 2,857 ClawHub skills and found 341 malicious listings, including 335 that deploy an Apple macOS stealer called Atomic Stealer. The campaign, dubbed ClawHavoc, uses 'Prerequisites' to trick users into running external installers from GitHub or glot.io. This exposes OpenClaw users to supply-chain malware and raises risk for macOS deployments.

Scoring Rationale

Strong practical impact and clear supply-chain threat; limited by single-source reporting and confined OpenClaw user base.

Practice interview problems based on real data

1,500+ SQL & Python problems across 15 industry datasets — the exact type of data you work with.

Try 250 free problems

Koi Security Finds Malicious Skills on ClawHub

Scoring Rationale

More AI & Data Science News

Anker debuts earbuds with on-device AI chip

SpaceX Files S-1 Revealing xAI Details

Google Publishes AI Website Optimization Guide

Spotify Announces Licensed AI Covers and Remixes Tool

Koi Security Finds Malicious Skills on ClawHub

Scoring Rationale

More AI & Data Science News

Anker debuts earbuds with on-device AI chip

SpaceX Files S-1 Revealing xAI Details

Google Publishes AI Website Optimization Guide

Spotify Announces Licensed AI Covers and Remixes Tool