Koi Security Finds Malicious Skills on ClawHub

On Feb. 3, 2026, Koi Security audited 2,857 ClawHub skills and found 341 malicious listings, including 335 that deploy an Apple macOS stealer called Atomic Stealer. The campaign, dubbed ClawHavoc, uses 'Prerequisites' to trick users into running external installers from GitHub or glot.io. This exposes OpenClaw users to supply-chain malware and raises risk for macOS deployments.