More Malicious OpenClaw Skills Threaten AI Supply Chain

Summary

OpenClaw has removed five malicious packages from its AI skills marketplace, ClawHub. These packages, designed to mimic legitimate AI tools, contained infostealers and other malware, and had bypassed the platform's security checks. This incident highlights ongoing risks within the AI supply chain, where malicious code can be disguised as useful tools.

Entities