Attackers exploit OpenClaw hype with fake “CLAW” airdrops, luring developers from GitHub into wallet-draining phishing sites.
Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until Feb 19, 2026 fix.
'It has been a bad week for Meta.' ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results