ExchangeDEX+

Buy Crypto Markets Spot FuturesGOLD Earn Event Center

PANews reported on February 9th that, according to SlowMist monitoring, ClawHub, the official plugin center of the open-source AI agent project OpenClaw, is increasinglyPANews reported on February 9th that, according to SlowMist monitoring, ClawHub, the official plugin center of the open-source AI agent project OpenClaw, is increasingly

SlowMist: ClawHub is increasingly becoming a new target for attackers to poison supply chains.

Author: PANews

Source: PANews

2026/02/09 10:51

1 min read

OPENCLAW$0.0002506-23.19%

NOT$0.0004031+1.12%

TREAT$0.0004652+6.55%

PANews reported on February 9th that, according to SlowMist monitoring, ClawHub, the official plugin center of the open-source AI agent project OpenClaw, is increasingly becoming a new target for attackers to carry out supply chain poisoning. Due to the platform's lack of a robust and rigorous review mechanism, a large number of malicious skills have been infiltrated and used to spread malicious code or deliver harmful content, posing potential security risks to developers and users. According to a report by Koi Security, 341 malicious skills were identified out of 2,857 scans, reflecting a typical "plugin/extension marketplace supply chain poisoning" pattern.

SlowMist recommends that you do not treat the "installation steps" in SKILL.md as a trusted source, and audit any commands that require copying and pasting. Be wary of prompts that ask for "system password/grant accessibility/system settings," as these are often points of escalation risk. Prioritize obtaining dependencies and tools from official channels and avoid executing installation scripts from unknown sources.

Market Opportunity

OpenClaw Price(OPENCLAW)

$0.0002506

$0.0002506$0.0002506

-14.96%

USD

OpenClaw (OPENCLAW) Live Price Chart

Disclaimer: The articles reposted on this site are sourced from public platforms and are provided for informational purposes only. They do not necessarily reflect the views of MEXC. All rights remain with the original authors. If you believe any content infringes on third-party rights, please contact service@support.mexc.com for removal. MEXC makes no guarantees regarding the accuracy, completeness, or timeliness of the content and is not responsible for any actions taken based on the information provided. The content does not constitute financial, legal, or other professional advice, nor should it be considered a recommendation or endorsement by MEXC.