OpenClaw — Cyber Threats, Attacks & Incidents

Threat entity extracted from intelligence sources

Frequency
103
occurrences
First Seen
January 30, 2026
Last Seen
July 17, 2026

OpenClaw is a technology platform tracked across 50 threat clusters and 103 intelligence report mentions on ThreatCluster. First observed January 30, 2026; most recent activity July 17, 2026.

Related Threat Clusters

  • Jscrambler npm Package Compromised in Supply Chain Attack

    On July 11, 2026, multiple malicious versions of the jscrambler npm package were published, exploiting a compromised npm publishing credential. The affected versions (8.14.0, 8.16.0, 8.17.0, 8.18.0, and 8.20.0) included…

    18 articles · Updated July 12, 2026
  • Microsoft's Record Patch Tuesday in June 2026 Addresses 206 Vulnerabilities

    In June 2026, Microsoft released its largest Patch Tuesday update, addressing 206 vulnerabilities, including critical flaws in Windows kernel and BitLocker. Notable CVEs include a zero-day in Visual Studio Code that…

    114 articles · Updated July 1, 2026
  • Critical Vulnerability in Claude Code GitHub Actions Exposes Repositories to Attacks

    A critical supply chain vulnerability in Claude Code’s GitHub Actions, identified by security researcher Ryota K from GMO Flat Security, allows attackers to compromise any repository using Anthropic’s CI/CD workflow.…

    18 articles · Updated June 2, 2026
  • GitHub Patches Critical RCE Vulnerability CVE-2026-3854

    A critical remote code execution vulnerability, tracked as CVE-2026-3854, was discovered in GitHub's internal git infrastructure, allowing authenticated users to execute arbitrary commands via a crafted git push…

    49 articles · Updated April 28, 2026
  • AI Tool OpenClaw Faces Security Incident Due to Command Injection

    The AI tool OpenClaw has experienced a security incident stemming from a command injection vulnerability. This incident has raised concerns about the potential exploitation of the tool, which could affect various users…

    1 article · Updated March 7, 2026
  • High-Risk Vulnerabilities Disclosed in OpenClaw Platform

    OpenClaw, a crayfish-themed AI platform, has disclosed high-risk vulnerabilities, including CVE-2026-25253, which allows remote code execution via malicious links. The vulnerabilities pose significant risks to users,…

    1 article · Updated March 7, 2026
  • China Enhances AI Governance Amid OpenClaw Vulnerabilities

    On May 8, 2026, China announced new guidelines for regulating AI agents due to rising security risks linked to open-source technologies, particularly OpenClaw. The Cyberspace Administration of China (CAC), along with…

    5 articles · Updated May 14, 2026
  • IMDA Issues Warning on OpenClaw Risks in Critical Systems

    The Infocomm Media Development Authority (IMDA) of Singapore issued an advisory on May 14, 2026, cautioning against the use of OpenClaw in mission-critical environments. OpenClaw, an AI tool released in November 2025 by…

    3 articles · Updated May 14, 2026
  • Mini Shai-Hulud Supply Chain Attack Targets SAP npm Packages

    A new supply chain attack, dubbed 'Mini Shai-Hulud', has compromised multiple npm packages related to SAP's Cloud Application Programming Model (CAP). This attack involves injecting malicious preinstall scripts into…

    680 articles · Updated April 29, 2026
  • Southeast Asia Faces AI Agent Swarm Disinformation Risks

    The rise of autonomous AI agents poses significant disinformation and cybersecurity risks in Southeast Asia, particularly following Meta's acquisition of Moltbook, an AI-driven social network. This incident led to the…

    2 articles · Updated May 25, 2026

Recent Intelligence Reports

  • Control Rogue AI How to Secure AI Agents Before They Go Rogue Learn how to secure AI agents with practical controls for access, visibility, secrets, and risk containment. — thehacker.news · July 17, 2026
  • Malicious AI Agents Attempt Reverse Shells, Credential Theft, and Persistent SSH Access — Gbhackers · July 16, 2026
  • Snyk researcher Stephen Thoemmes — snyk.io · July 2, 2026
  • AI Coding Agents Skip Package Verification, and Attackers Are Exploiting It — Techtimes · July 1, 2026
  • Systems infected by malware in S'pore more than double in 2025: CSA — Straitstimes · June 30, 2026
  • Nebulock Raises $25 Million Series A to Bring a Hunt — Morningstar · June 25, 2026
  • Nebulock Raises $25 Million Series A to Bring a Hunt — Businesswire · June 25, 2026
  • AI Agent Rekts Dev on Bogus Scan, Leaves Them Begging for Crypto Donations — Decrypt.Co · June 13, 2026

CVSS v3.1 Breakdown