ALPARAITrust Infrastructure

Where the world holds AI accountable.

Product

Incidents
Leaderboard
Dilemmas
Suggestions
Blog
Report incident

Legal

Privacy
Terms
Takedown
Cookies
Whistleblower program

About

Our story
Contact
Transparency report

Intermediary platform. User-submitted content.

Feed Incidents Leaderboard About

Malicious OpenClaw Skills Reportedly Delivered AMOS Stealer and Exfiltrated Credentials via ClawHub · ALPAR AI

criticalHarassment UnknownPublish anonymously

Malicious OpenClaw Skills Reportedly Delivered AMOS Stealer and Exfiltrated Credentials via ClawHub

by Publish anonymously · 2 days agoviews 0en

PII protected

Personal information such as emails, phone numbers, IDs and access tokens are automatically masked before publication.

Bitdefender researchers reported abuse in OpenClaw's third-party 'skills' ecosystem. In a Feb. 2026 sample, about 17% of skills were reportedly assessed as malicious, with many seemingly cloned under slight name changes. Posing as utilities, some skills were reportedly found to run obfuscated commands, fetch remote payloads, and in some cases deliver AMOS Stealer on macOS. Other skills were reportedly observed searching for private keys or API tokens and exfiltrating them.

External Source Attribution

This incident was imported from an external open database. Licensed under CC BY 4.0 or public domain. Original source details below.

Source: AI Incident Database (Open/Stanford License)

Awaiting official response

The official response from the AI provider for this incident.

Community Discussion

No comments yet. Start the discussion!

You must sign in to join the discussion.

Details

AI ProviderUnknown

CategoryHarassment

When did it happen?Feb 1, 2026

Languageen