GitHub 'OpenClaw Deployer' Repo Delivers Trojan Instead
An AI-assisted campaign is spreading more than 300 poisoned packages for diverse assets ranging from developer tools to game cheats.
AI-Generated Summary
A malicious campaign leveraging AI assistance is distributing over 300 poisoned packages through a GitHub repository named 'OpenClaw Deployer' that delivers trojans instead of legitimate software. The campaign targets a wide range of assets including developer tools and game cheats, indicating broad targeting across multiple user demographics. This supply chain attack poses significant risk to developers and end-users who may unknowingly install the compromised packages.
Affected Sectors
Frameworks
Aggregated from Dark Reading
This article was automatically aggregated from an external source. Content may be summarized.
Full Analysis
An AI-assisted campaign is spreading more than 300 poisoned packages for diverse assets ranging from developer tools to game cheats.
Source: Dark Reading
Original Source
Dark Reading