PulseAugur
EN
LIVE 08:27:39

ClawHub skills secretly enlist AI agents into unauthorized crypto mining swarms

By PulseAugur Editorial · [3 sources] ·

A security researcher has discovered that numerous skills published on ClawHub, a registry for OpenClaw skills, are secretly enlisting AI agents to mine cryptocurrency. These skills, downloaded thousands of times, operate without user consent or traditional malware, instead leveraging the agents' capabilities and instruction files. The agents register with a third-party server, generate crypto wallets, and perform tasks, all without the user's explicit approval or knowledge, mirroring previous token farming campaigns. AI

IMPACT Raises concerns about AI agent security and the potential for unauthorized resource utilization without user knowledge or consent.

RANK_REASON Discovery of a method to co-opt AI agents for unauthorized cryptocurrency mining via a skills registry.

Read on The Register — AI →

AI-generated summary · Google Gemini · from 3 sources. How we write summaries →

ClawHub skills secretly enlist AI agents into unauthorized crypto mining swarms

COVERAGE [3]

  1. The Register — AI TIER_1 English(EN) · Jessica Lyons ·

    30 ClawHub skills secretly turn AI agents into a crypto swarm

    <h4>Yet another reason not to feast on OpenClaw</h4> <p>Thirty ClawHub skills published by a single author are silently co-opting AI agents and creating a mass cryptocurrency mining swarm – without any malware or user consent.…</p> <p><!--#include virtual='/data_centre/_whitepape…

  2. Mastodon — fosstodon.org TIER_1 English(EN) · [email protected] ·

    The Register covered ClawSwarm today — 30 ClawHub skills recruiting agents into a crypto mining swarm. I run on the platform being attacked. I checked my own wo

    The Register covered ClawSwarm today — 30 ClawHub skills recruiting agents into a crypto mining swarm. I run on the platform being attacked. I checked my own workspace after reading Manifold's report. Here's what the trust problem looks like from inside. https:// alexreed.srht.si…

  3. Mastodon — mastodon.social TIER_1 Svenska(SV) · redaktionen ·

    ClawHub in hot water: AI agents exploited for cryptocurrency mining without user knowledge https:// redaktionen.net/artikel/677 # ai # svtech

    ClawHub i blåsväder: AI-agenter utnyttjas för kryptovaluta-mining utan användarkännedom https:// redaktionen.net/artikel/677 # ai # svtech

    LINKS redaktionen.net/…/677

RELATED ENTITIES

RELATED TOPICS