GhostClaw poses as an OpenClaw installer package, stealing system credentials and sensitive data before deploying a persistent RAT.
Cryptopolitan on MSN
Cybersecurity researchers uncover GhostLoader malware hidden in fake OpenClaw npm package
A malicious npm package disguised as a legitimate AI tool to install the virally popular OpenClaw, but designed to steal system passwords and crypto wallets, has been identified by cybersecurity ...
Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results