Skip to content

About Us
Privacy Policy
Search
Terms of Use

GLOBAL SITUATIONMONITORING

517 published briefsUTCFri, Jun 5 04:52:51

Intelligence Tag

npm

npm ecosystem tag

2 intelligence briefs← Intelligence Hub

Malicious npm package posing as OpenClaw installer deploys RAT, steals macOS credentials

Researchers say a malicious npm package named @openclaw-ai/openclawai masqueraded as an OpenClaw installer, deployed a remote access trojan, and stole sensitive data from macOS systems after being uploaded by a user named openclaw-ai on March 3, 2026.

Peter Chofield

Mar 16, 2026

1–2 minutes
PhantomRaven Malware Found in 126 npm Packages, Stealing GitHub Tokens

PhantomRaven exploits npm packages to steal GitHub tokens and CI/CD secrets, Koi Security says.

Reza Rafati

Nov 15, 2025

1–2 minutes

Tag Stats

Published Briefs: 2
Latest Brief: 3 months ago

Intel Domains

Cyber News & Updates256
Operations & Campaigns104
Cybercrime & Underground Economy35

Related Tags

Credential Theft supply-chain OpenClaw PhantomRaven

Recent Briefs

Malicious npm package posing as OpenClaw installer deploys RAT, steals macOS credentials3 months ago
PhantomRaven Malware Found in 126 npm Packages, Stealing GitHub Tokens7 months ago

Search Briefs

Search for:

Cyberwarzone Intelligence Network by TIL (link), powered by Feluda.ai (link). Made in The Netherlands.