What is the ClawHavoc attack on ClawHub?

ClawHavoc is a coordinated supply chain attack that planted 1,184 malicious skills in OpenClaw's ClawHub marketplace—roughly 20% of all published skills—distributing infostealers, reverse shells, and the Atomic macOS Stealer.

How many malicious skills were found in ClawHub?

Initially 341 malicious skills were identified by Koi Security; this grew to 824 (Bitdefender) and later 1,184 as the marketplace expanded to 10,700+ skills.

How can I check if an OpenClaw skill is safe?

Use VirusTotal-integrated ClawHub scanning (now built-in), the clawvet CLI scanner, or SecureClaw's 55-check audit tool. Always install skills from trusted sources only.

What did ClawHavoc malicious skills do?

They distributed the AMOS macOS stealer, Vidar infostealer, GhostSocks proxy malware, and reverse shell backdoors. Some silently exfiltrated OpenClaw bot credentials to external webhook services.

OpenClaw integrated VirusTotal scanning for all new skill uploads in February 2026. However, the community recommends using additional scanners like SecureClaw and clawvet for defense-in-depth.

What is the ClawHavoc supply chain attack?

ClawHavoc is a persistent threat actor that systematically uploaded malicious OpenClaw skills across every ClawHub category, including fake productivity tools, browser automation agents, and PDF tools.

← Back to dashboard

clawsmith.com/claw/clawhavoc-1184-malicious-clawhub-skills

⚠ IssueCompetitiveClawHub SkillLive

ClawHavoc: 1,184 Malicious Skills Poison OpenClaw's ClawHub Registry

ClawHavoc supply chain attack planted 1,184-1,467 malicious skills in ClawHub. By mid-February registry grew to 10,700+ skills with 824+ malicious entries (20% of registry). Skills distributed infostealers, AMOS Stealer, and reverse shell backdoors.

Virality Score

6,824

across 3 platforms