OpenClaw Under Fire: Phishing Campaign and Platform Updates
trending_up Trend: security

OpenClaw Under Fire: Phishing Campaign and Platform Updates

calendar_month July 6, 2026

OpenClaw Under Fire: Phishing Campaign and Platform Updates

Summary

The developer community behind the popular open-source AI assistant OpenClaw is currently targeted by a sophisticated phishing campaign. Under the pretext of a fake “CLAW Token” airdrop, attackers are trying to steal cryptocurrency wallets and GitHub credentials. At the same time, the OpenClaw team has released a critical stability update for session state management and prepared formal integration support for the upcoming GPT-5.6 model family across its plugin catalog.

What happened?

  • Phishing on GitHub: Attackers impersonate legitimate OpenClaw supporters (e.g., using the pseudonym AnalogIguana) to post fake support threads on GitHub, promising developers a free “CLAW Token” distribution or airdrop.
  • Crypto Wallet Drainers: Links in these phishing posts direct victims to the fraudulent domain token-claw.xyz. There, users are prompted to connect their crypto wallets, which subsequently drains their digital assets.
  • Session Reliability: Aside from the security incidents, OpenClaw released an important update to address session state stability, fixing crashes associated with long-running agent connections.
  • GPT-5.6 Plugin Support: OpenClaw is preparing for the next generation of LLMs. The plugin catalog has been updated with formal compatibility for the upcoming GPT-5.6 model family.

Why it matters

The attack highlights an increasing trend of targeting open-source developers through platform impersonation. Because AI assistants like OpenClaw are often deeply integrated into developers’ local setups and infrastructure, compromised credentials or systems present a significant security risk. However, the simultaneous updates show that the ecosystem remains active and continues to evolve, preparing early for next-generation models.

Evidence

  • Security Alert on CoinMarketCap: Reports detailing phishing scams targeting OpenClaw developers using fake token claims.
  • Official Release Notes: Documentation of the stability enhancements and plugin updates on GitHub.
  • Plugin Catalog Entries: Support documentation for OpenClaw integrations on Composio and OpenRouter model collection lists.

Analysis

This phishing wave exploits the high trust environment of the open-source community. As OpenClaw grows rapidly and attracts more developers, it becomes an attractive target for social engineering. The attackers successfully combine classic phishing with modern Web3 drainers. On the technical side, the rapid integration of GPT-5.6 shows that OpenClaw aims to cement its status as a leading hub for MCP tools (Model Context Protocol) and flexible model routing, keeping up with competitors like Nous Research’s Hermes Agent.

Practical Takeaways

  1. Do Not Connect Wallets: Never connect your crypto wallet to unverified domains such as token-claw.xyz.
  2. Verify Support Sources: Official support and announcements are strictly published via the verified domain openclaw.com.au and the official GitHub repository.
  3. Apply Updates: Update your local OpenClaw instances to the latest release to benefit from key session-state stability improvements.

Open Questions

  • How many developer accounts have already been compromised by the fraudulent GitHub posts?
  • Will the OpenClaw team introduce additional verification steps on GitHub to mitigate support impersonation?

Sources

  1. OpenClaw Developers Targeted in GitHub Phishing Scam
  2. OpenClaw Official Release Notes
  3. OpenClaw Australian Updates
  4. How to integrate Specific MCP with OpenClaw
  5. OpenRouter OpenClaw Model Collection