OpenClaw GitHub phishing scam uses fake $5,000 token airdrops gain wallet access
OpenClaw developers are targeted by a GitHub phishing scam offering fake token airdrops to steal crypto wallet access.Summary
Security researchers at OX Security have reported a phishing campaign targeting OpenClaw developers on GitHub. Attackers are impersonating the project and offering fake CLAW token airdrops worth approximately $5,000 to entice developers into connecting their crypto wallets. These phishing pages closely resemble the legitimate OpenClaw website but contain malicious code that drains funds once wallet access is granted, supporting wallets like MetaMask, WalletConnect, and Trust Wallet. This campaign follows previous scams exploiting the OpenClaw name, leading founder Peter Steinberger to ban crypto discussions on the project’s Discord. The attackers leverage social engineering, targeting users who have interacted with OpenClaw repositories to appear credible.
(Source:CoinDesk)