Ministry of Industry and Information Technology NVDB Reminder: Beware of OpenClaw counterfeit download sites and installation files

Cybersecurity Threats and Vulnerabilities Information Sharing Platform Message. Recently, the Ministry of Industry and Information Technology’s Cybersecurity Threats and Vulnerabilities Information Sharing Platform (NVDB) monitoring identified that an attacking organization has taken advantage of the popularity of OpenClaw (also known as the “lobster”) by impersonating the OpenClaw download website and installation files, prompting users to download installation files containing malicious programs. Once a user runs an installation file containing a malicious program, the file will covertly load the malicious program on the end-user device, release and implant a remote control Trojan horse, and may lead to consequences such as network attacks, system takeover, and information leakage. Currently, the impersonated domains identified in monitoring include: ai-openclaw.com.cn、web-openclaw.com.cn. The names of the malicious installation packages include: openclaw.zip、openclawAI7beAolenc.zip、openclaw.exe、opealeAi_7beAole-x64.exe, etc. Users are advised to download OpenClaw and its skill plugins through trusted channels, and to click unknown links with caution to prevent the risk of cyberattacks. (Interface)