Fake $5,000 CLAW Token Airdrop Phishing Campaign Targets OpenClaw GitHub Developers

Attackers create bogus GitHub accounts and tag OpenClaw developers in issue threads claiming $5,000 in fake CLAW tokens. Phishing pages mimic the real OpenClaw website with wallet-connect prompts. Third crypto fraud campaign targeting the OpenClaw community in 2026.

Product Idea from this Signal

A security layer that vets ClawHub skills for malware and prompt injection before your agent installs them

133.9k ▲

ClawHub grew 380% to 13,729 skills in Q1 2026. Snyk found 36% contain prompt injection and 1,467 carry malicious payloads. The ClawHavoc campaign planted 1,184 weaponized skills in the marketplace. VirusTotal integration catches known malware but misses novel prompt injection, data exfiltration via tool outputs, and social engineering patterns unique to AI agent skills. This tool performs deep behavioral analysis of every skill before installation, catching threats that signature-based scanners miss.

SECURITYCLIDEVTOOLOPEN-SOURCE

CompetitiveView Opportunity →