SlowMist CISO: Beware of Malicious OpenClaw Installation Package Stealing Cryptocurrency Wallet Private Keys and System Credentials

BlockBeats News, March 10th, According to SlowMist Chief Information Security Officer 23pds, the intelligence system discovered a malicious npm package named “@openclaw-ai/openclawai” carrying out a multi-layered attack. This malicious package masquerades as a legitimate command-line tool called OpenClaw Installer, aiming to steal user sensitive information, including system credentials, encrypted wallet private keys, browser data, SSH keys, and Apple Keychain data.