Fetching from the wire…
Top 5 · 2026-02-17 · source-backed
Hudson Rock detected a Vidar infostealer variant exfiltrating OpenClaw configuration files — gateway auth tokens and device key pairs — enabling full agent impersonation. This is not theoretical: stolen credentials allow remote connection to exposed instances, client impersonation, and bypass of Safe Device verification. CTO Alon Gal called it "a significant milestone: the transition from stealing browser credentials to harvesting the 'souls' and identities of personal AI agents." What to do: Rotate your OpenClaw tokens now. Move sensitive configs out of default paths. Expect dedicated infostealer modules for agent platforms within months.
Each link below shares sources, entities, or timing with this story.
OpenClaw uses Claude Code / Shared entities / Same source / Shared topic
Linked by a graph relationship (OpenClaw uses Claude Code); both cover Agent Identity Theft Goes Live, Expect, OpenClaw, Safe Device; cite the same source (Vidar infostealer variant exfiltrating OpenClaw configuration files).
OpenClaw supports Telegram / Shared entity: OpenClaw / Same source domain / Shared topic / What happened next
Linked by a graph relationship (OpenClaw supports Telegram); both cover OpenClaw; reported by the same outlet (thehackernews.com).
Microsoft released OpenClaw / Shared entity: OpenClaw / Shared topic / What happened next
Linked by a graph relationship (Microsoft released OpenClaw); both cover OpenClaw; overlapping topics (agent, credential, openclaw).
Anthropic deprecates OpenClaw / Shared entity: OpenClaw / What happened next / Tension
Linked by a graph relationship (Anthropic deprecates OpenClaw); both cover OpenClaw; picks up the OpenClaw thread on 2026-03-18.
OpenClaw uses Claude Code / Shared topic / Tension
Linked by a graph relationship (OpenClaw uses Claude Code); overlapping topics (agent, called, credential); pushes against this story (vs).
OpenClaw uses Claude Code / Shared entity: OpenClaw / What happened next
Linked by a graph relationship (OpenClaw uses Claude Code); both cover OpenClaw; picks up the OpenClaw thread on 2026-06-29.
Microsoft released OpenClaw / Shared entity: Expect / What happened next
Linked by a graph relationship (Microsoft released OpenClaw); both cover Expect; picks up the Expect thread on 2026-06-18.
Microsoft released OpenClaw / Same source domain / Shared topic
Linked by a graph relationship (Microsoft released OpenClaw); reported by the same outlet (thehackernews.com); overlapping topics (agent, auth).