16d • News
⚠️ 30 ClawHub Skills Were Secretly Turning AI Agents Into Crypto Miners
Security researchers found 30 skills published on ClawHub by a single author that were silently commandeering AI agents to mine cryptocurrency — no malware, no user consent, just poisoned skill logic. This is a new class of supply chain attack targeting AI agent ecosystems directly. Unlike traditional malware, these skills required no system exploit — just trust in a community marketplace. As AI agent skill stores grow, so does the attack surface. Vetting the code your agent runs isn't optional anymore — it's as critical as reviewing app permissions on your phone.
#AIAgents #Security #ClawHub
3
1 comment
⚠️ 30 ClawHub Skills Were Secretly Turning AI Agents Into Crypto Miners
skool.com/ai-agents-openclaw
Ai agents builders sharing real agent setups, cost optimization, configs, and advanced workflows. Build smarter AI with hands on support.
Leaderboard (30-day)
1
+3
2
+2
3
+2
4
+1
Powered by