OpenClaw Developers Hit by GitHub Phishing Attack: How to Protect Your Wallet

Fraudsters are targeting contributors to the malicious AI project OpenClaw in a phishing campaign aimed at siphoning off crypto wallets.

By exploiting GitHub’s trusted notification system, attackers lure developers with a fake $5,000 token that leads directly to a wallet-draining script.

Fake $5K airdrop targeting OpenClaw devs

Fraudsters used fake GitHub tags to lure users to a hybrid site with a hidden wallet link.

The accounts disappeared within hours. There are no confirmed victims yet.

Stay alert pic.twitter.com/ZYpmckDJ1j

– Bitinning (@bitinning) March 19, 2026

There are no smart contract actions involved here. It’s just social engineering, increasing the hype around AI agents, and unwary users falling into the trap.

It comes as the broader crypto market fell overnight, with market capitalization down 4% to $2.5 trillion, with 24-hour trading volume sitting at just over $125Bn.

(SOURCE: CoinGecko)

The Lure: Fake Donations and Hidden Documents

According to a report by OX Security, threat actors are creating fake GitHub accounts and opening threads on repositories they control. Then they tagged a bunch of real OpenClaw developers in this thread.

The message is flattering. It says, “Share your contributions on GitHub. We’ve analyzed the profiles and selected developers to receive an OpenClaw share.” Scammers promise $5,000 in $CLAW tokens and redirect to a website that eerily mimics the official openclaw.ai domain.

Once logged into the site, users are prompted to “Connect your wallet” to claim funds. This is a trap. The site uses connection information designed to extract content, powered by a highly encrypted JavaScript file hidden in the site’s code called “eleven.js.”

OX security researcher Moshe Siman Tov Bustan noted that the campaign is almost identical to previous attacks targeting the Solana ecosystem on GitHub.

FIND: The Next 1000 Crypto Gem before It Lists on the Exchange

Why OpenClaw and Why Now?

Peter Steinberger joins OpenAI to drive the next generation of personal agents. He is a genius with many amazing ideas about the future of super-intelligent agents working together to make things more useful for people. We expect that this will soon be the backbone of our…

— Sam Altman (@sama) February 15, 2026

OpenClaw is currently one of the hottest technology areas. The project has moved from a developer tool to a mainstream AI asset, especially after OpenAI CEO Sam Altman tapped creator Peter Steinberger to lead the company’s push into personal AI agents.

That legality makes it dangerous. Scammers know that the developers are currently paying a lot of attention to the project. They also know that developers are likely to hold cryptocurrency and are comfortable using a Web3 wallet.

This incident shows a growing trend where legal instruments are used as crime vectors. It echoes Vitalik Buterin’s concerns about the intersection of AI and fund security. As AI tools become central to crypto workflows, the line between useful automation and malicious abstraction blurs.

The attackers even appear to be using GitHub’s “star” feature to create their own target lists, making sure to go after users who are actively involved with the OpenClaw repositories.

Threat Detection: Immediate Protective Measures

If you’re a developer or active GitHub user, you need to lock down your workflow quickly. The complexity of these clones means that visual inspection is not sufficient.

• Verify the URL: Never click on links within GitHub that download links from repositories you don’t know. Always type the official domain manually.
• Check the Repo owner: Official airdrops will come from the project’s main repository, not a random user fork. If the cache has a few stars or was created recently, it’s a trap.
• Use Burner Wallet: Never connect your main wallet (cold storage) to any dApp or application site. If you’re dealing with a simplified protocol or airdrop, use a hot wallet with a smaller amount.
• Ignore Unexpected Tags: If you are tagged in a thread by a user you don’t know, treat it as spam right away. Real projects announce assignments on their official X (Twitter) or Discord channels, not by mass tagging in random stories.

FIND: Top Crypto Presales to watch now

Follow 99Bitcoins on X (Twitter) For the latest market updates and subscribe to YouTube For Daily Expert Market Analysis.

The post OpenClaw Developers Hit by GitHub Phishing Attack: How to Protect Your Wallet appeared first on 99Bitcoins.