{"id":439633,"date":"2026-02-22T13:03:31","date_gmt":"2026-02-22T13:03:31","guid":{"rendered":"https:\/\/www.newsbeep.com\/uk\/439633\/"},"modified":"2026-02-22T13:03:31","modified_gmt":"2026-02-22T13:03:31","slug":"compromised-npm-package-silently-installs-openclaw-on-developer-machines","status":"publish","type":"post","link":"https:\/\/www.newsbeep.com\/uk\/439633\/","title":{"rendered":"Compromised npm package silently installs OpenClaw on developer machines"},"content":{"rendered":"<p>Users love OpenClaw; attackers do, too<\/p>\n<p>OpenClaw (formerly Clawdbot and Moltbot) is a free, open-source, autonomous AI agent that <a href=\"https:\/\/openclaw.ai\/blog\/introducing-openclaw\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">launched on January 29<\/a> and almost immediately went viral. According to its developer, Peter Steinberger, its repo had more than 2 million visitors over the course of a single week, and it\u2019s estimated that it has been <a href=\"http:\/\/www.ox.security\/blog\/how-to-uninstall-openclaw-remove-data-revoke-access\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">downloaded 720,000 times a week<\/a>.<\/p>\n<p>OpenClaw runs locally on a user\u2019s hardware rather than in the cloud, and can perform autonomous, real-world actions on their behalf, such as reading emails, browsing web pages, running apps, or managing calendars.<\/p>\n<p>However, almost immediately after release, it raised <a href=\"https:\/\/www.computerworld.com\/article\/4125939\/by-whatever-name-moltbolt-clawd-openclaw-this-uber-ai-assistant-is-a-security-nightmare.html\" target=\"_blank\" rel=\"nofollow noopener\">serious security issues<\/a>: It is prone to prompt injection attacks, authentication bypasses, and server-side request forgery (SSRF), among other <a href=\"https:\/\/www.csoonline.com\/article\/4134540\/six-flaws-found-hiding-in-openclaws-plumbing.html\" target=\"_blank\" rel=\"nofollow noopener\">attacks<\/a>. Many enterprises have responded by severely restricting, or outright banning, the AI agent.<\/p>\n","protected":false},"excerpt":{"rendered":"Users love OpenClaw; attackers do, too OpenClaw (formerly Clawdbot and Moltbot) is a free, open-source, autonomous AI agent&hellip;\n","protected":false},"author":2,"featured_media":439634,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20],"tags":[554,733,4308,86,56,54,55],"class_list":{"0":"post-439633","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-artificial-intelligence","8":"tag-ai","9":"tag-artificial-intelligence","10":"tag-artificialintelligence","11":"tag-technology","12":"tag-uk","13":"tag-united-kingdom","14":"tag-unitedkingdom"},"_links":{"self":[{"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/posts\/439633","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/comments?post=439633"}],"version-history":[{"count":0,"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/posts\/439633\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/media\/439634"}],"wp:attachment":[{"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/media?parent=439633"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/categories?post=439633"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.newsbeep.com\/uk\/wp-json\/wp\/v2\/tags?post=439633"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}