Malicious campaigns exploiting OpenClaw's ClawHub skill marketplace through unblocked skills, including macOS infostealers, evasion techniques, and agentic threats. Attackers bypassed security measures like VirusTotal and ClawScan to deliver payloads via semantic instruction hijacking and runtime manipulation.
| Vendor | Product | Versions |
|---|---|---|
| openclaw | clawhub | — |
