Malicious cyber actors are exploiting the growing popularity of the open-source AI agent project OpenClaw with a phishing campaign to drain developers' crypto wallets, cybersecurity firm OX Security said. In a report published Wednesday, OX said the threat actor created fake GitHub accounts, opened issue threads in attacker-controlled repositories, and tagged dozens of developers claiming they had been selected to receive $5,000 in "CLAW" tokens. Attackers directed victims to a malicious site, tricking them into connecting their wallets to claim fraudulent rewards. According to OX, the webpage was an almost identical ... (full story)