Scammers are targeting contributors to the viral AI project OpenClaw with a sophisticated phishing campaign aimed at draining crypto wallets.
By exploiting GitHub’s trusted notification system, attackers lure developers with a fake $5,000 token airdrop that leads directly to a wallet-draining script.
https://twitter.com/bitinning/status/2034563516552847410?ref_src=twsrc%5Etfw” rel=”nofollow” target=”_blank
There are no smart contract exploits involved here. Just social engineering, leveraging the hype around AI agents, and unsuspecting users falling for the trap.
It comes as the broader crypto market suffered a slump overnight, with the total market cap falling 4% to $2.5 trillion, with 24-hour trading volume sitting at just over $125Bn.
According to a report by OX Security, threat actors create fraudulent GitHub accounts and open issue threads in repositories they control. They then tag dozens of authentic OpenClaw developers in these threads.
The message is flattering. It claims, “Appreciate your contributions on GitHub. We analyzed profiles and chose developers to get OpenClaw allocation.” The scammers promise $5,000 worth of $CLAW tokens and direct targets to a website that eerily mimics the official openclaw.ai domain.
Once on the site, users are prompted to “Connect your wallet” to claim the funds. This is the trap. The site executes a connection prompt designed to drain assets, powered by a heavily obfuscated JavaScript file hidden in the site’s code named “eleven.js.”
OX Security researcher Moshe Siman Tov Bustan noted that the campaign closely resembles previous attacks targeting the Solana ecosystem on GitHub.
DISCOVER: The Next 1000x Crypto Gem Before It Lists on Exchanges
https://twitter.com/sama/status/2023150230905159801?ref_src=twsrc%5Etfw” rel=”nofollow” target=”_blank
OpenClaw is currently one of the hottest tech properties. The project has moved from a developer tool to a mainstream AI asset, especially after OpenAI CEO Sam Altman tapped creator Peter Steinberger to lead the company’s push into personal AI agents.
That legitimacy makes it dangerous. Scammers know that developers are currently paying close attention to the project. They also know that developers are likely to hold cryptocurrency and are comfortable using Web3 wallets.
This incident highlights a growing trend where legitimate tools are used as vectors for theft. It echoes Vitalik Buterin’s concerns about the intersection of AI and wallet security. As AI tools become central to the crypto workflow, the line between helpful automation and malicious extraction blurs.
The attackers even appear to be using GitHub’s “star” feature to build their target lists, ensuring they go after users who have actively engaged with OpenClaw repositories.
If you are a developer or active GitHub user, you need to lock down your workflow immediately. The sophistication of these clones means visual inspection is often not enough.
DISCOVER: Top Crypto Presales to Watch Now
Follow 99Bitcoins on X (Twitter) For the Latest Market Updates and Subscribe on YouTube For Daily Expert Market Analysis.
The post OpenClaw Developers Hit by GitHub Phishing Attack: How to Protect Your Wallet appeared first on 99Bitcoins.
Bitcoin's push to $74,000 demonstrated strength, but heavy profit-taking and low futures activity suggest…
The collection of millions of hacked computers known as Aisuru and Kimwolf have been used…
JPMorgan cuts its S&P 500 target and warns investors are dangerously complacent about Iran war…
Rivr, a Zurich-based autonomous robotics startup known for its stair-climbing delivery robot, has been acquired…
A decentralized AI experiment once confined to crypto circles just earned a public nod from…
Kalshi has raised more than $1 billion at a $22 billion valuation in a new…