Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials
- Posted on March 9, 2026
- By The Hacker News
- 5 Views
Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials
Malicious npm package '@openclaw-ai/openclawai' downloaded 178 times installs GhostLoader RAT, stealing credentials and crypto wallets.
