Malware-laced OpenClaw installers get Bing AI search boost

Hackers exploit OpenClaw to spread malware via GitHub - and a little help from Bing

OpenClaw's popularity is proving to be a great vessel for malware distribution, especially when it's advertised via Bing.

Bing AI promoted fake OpenClaw GitHub repo pushing info-stealing malware

Fake OpenClaw installers hosted in GitHub repositories and promoted by Microsoft Bing's AI-enhanced search feature instructed users to run commands that deployed information stealers and proxy malware. [...]

Malware-laced OpenClaw installers get Bing AI search boost

: Think before you download

Hackers Are Using OpenClaw, GitHub, and Bing to Spread Malware in a Disturbingly Clever Way

A legitimate open-source game is being weaponized to distribute malware, and the attack chain is surprisingly sophisticated. Researchers have uncovered a campaign that exploits OpenClaw — a free, open-source remake of the 1997 platformer Captain Claw — to trick users into downloading info-stealing malware through GitHub repositories and manipulated Bing search results. The scheme works like this. Attackers forked the real OpenClaw GitHub reposit…

Latest OpenClaw Security Risk: Fake GitHub Repositories Used to Deploy Infostealers

Huntress researchers said actors used a malicious repository on GitHub to lure victims into downloading a bogus OpenClaw installer that delivered infostealer malware and the GhostSocks proxy. The fake installer was given greater legitimacy by being hosted on GitHub and its high ranking in Bing AI searches. The post Latest OpenClaw Security Risk: Fake GitHub Repositories Used to Deploy Infostealers appeared first on Security Boulevard.