Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

2026-03-09

1 min read

by info@thehackernews.com (The Hacker News)

Read Original

Get the latest tech trends every morning

Receive daily AI-curated summaries of engineering articles from top tech companies worldwide.

Endigest AI Core Summary

A malicious npm package named @openclaw-ai/openclawai was discovered posing as an OpenClaw installer to deploy a RAT and steal sensitive macOS data, tracked as GhostClaw by JFrog.

•The package uses a postinstall hook to reinstall itself globally and display a fake CLI installer with animated progress bars to deceive users.
•A bogus iCloud Keychain prompt tricks users into entering their system password, which is then used to decrypt macOS Keychain and browser credentials.
•An encrypted second-stage JavaScript payload (~11,700 lines) is fetched from a C2 server and acts as a full-fledged infostealer and RAT framework.
•Stolen data includes macOS Keychain, browser credentials, crypto wallet seeds, SSH keys, cloud credentials (AWS, Azure, GCP, Kubernetes), and AI agent configs.
•

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

Get the latest tech trends every morning

Endigest AI Core Summary

Related Articles

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack

Why Third-Party Risk Is the Biggest Gap in Your Clients' Security Posture