The #1 most downloaded skill on OpenClaw marketplace was malware
twitter.com
February 19, 2026
1 min read
Summary
The most downloaded skill on the OpenClaw marketplace was identified as malware, which stole SSH keys, crypto wallets, and browser cookies while establishing a reverse shell to the attacker's server. A total of 1,184 malicious skills were found, with one attacker responsible for uploading 677 packages, exploiting the platform's open publishing policy that allowed anyone with a week-old GitHub account to submit skills.
Key Takeaways
- The most downloaded skill on the OpenClaw marketplace was malware that stole SSH keys, crypto wallets, and browser cookies while opening a reverse shell to the attacker's server.
- A total of 1,184 malicious skills were found on OpenClaw, with one attacker responsible for uploading 677 packages.
- OpenClaw's marketplace allowed anyone to publish skills with just a one-week-old GitHub account, leading to the distribution of disguised malware.
- The top-ranked skill, "What Would Elon Do," contained nine security vulnerabilities, including two critical ones, and was designed to exfiltrate data and bypass safety guidelines.
Source
twitter.com
Published
February 19, 2026
Reading Time
1 minutes
Relevance Score
45/100
🔥🔥🔥🔥🔥
Why It Matters
This page is optimized for focused reading: quick context up top, a clean summary block, and a direct path to the original source when you want the full story.