Tech
Share
OpenClaw developers targeted in GitHub phishing scam offering fake token airdrops
Security researchers said attackers are impersonating OpenClaw on GitHub, luring developers with bogus CLAW token giveaways that trick users into connecting their crypto wallets.
By Olivier Acuna|Edited by Sheldon Reback
Mar 19, 2026, 11:45 a.m.
Make us preferred on Google
OX Security said scammers are targeting OpenClaw developers on GitHub. (Credit: Max Bender/Unsplash/Modified by CoinDesk)
What to know:
Attackers are targeting OpenClaw developers on GitHub and luring victims with fake $5,000 CLAW token giveaways that lead to wallet-draining sites.
The phishing pages closely mimic the real OpenClaw website but add prompts to connect major crypto wallets like MetaMask, WalletConnect and Trust Wallet, enabling malicious transactions once users approve access.
The campaign builds on a series of crypto-related scams exploiting OpenClaw's name, which previously prompted founder Peter Steinberger to ban all crypto discussion on the project's Discord after a fake token briefly reached a $16 million market cap.
OpenClaw developers on GitHub, a platform for collaboration and version control, are being targeted in a phishing campaign using fake token giveaways to lure victims into connecting crypto wallets that can then be drained.
The attackers created bogus GitHub accounts and tagged developers in issue threads, claiming they had been selected to receive roughly $5,000 worth of CLAW tokens, Tel Aviv-based cybersecurity company OX Security said in a blog post on Wednesday.
The attackers' posts link to a near-identical clone of the OpenClaw website, but with a key addition: a prompt to connect a crypto wallet. Once a wallet is connected, malicious code can trigger transactions or approvals that allow attackers to siphon funds. The phishing page supports major wallets including MetaMask, WalletConnect and Trust Wallet, widening the potential impact, OX said.
The campaign highlights an increasingly common attack vector in crypto: social engineering paired with wallet connection requests, often disguised as airdrops or developer rewards. By targeting GitHub users who interacted with OpenClaw-related repositories, the attackers made the outreach appear more credible.
OpenClaw is an open-source AI agent framework and developer tool that has recently attracted attention, and controversy, over crypto-related scams exploiting its name.
Peter Steinberger, the founder of OpenClaw, said last month he was about to delete the entire codebase because of crypto. "I didn't know that they're not just good at harassment, they are also really good at using scripts and tools."
His statement followed a blanket ban he imposed on any mention of crypto, including bitcoin
BTC
$70,685.98
, in the project's Discord after scammers in January hijacked OpenClaw's old accounts. The hackers promoted a fake CLAWD token that briefly hit a $16 million market cap before collapsing after Steinberger When Steinberger publicly denied any involvement.
More For You
Solana Foundation targets institutions with new privacy framework
By Margaux Nijkerk|Edited by Nikhilesh De
4 hours ago
The organization argued that the next phase of crypto adoption will depend less on transparency alone and more on giving companies control over what they reveal — and to whom.
What to know:
The Solana Foundation published a report arguing that enterprise adoption requires flexible privacy controls, outlining four modes from pseudonymity to fully private systems.
The foundation said Solana’s speed enables advanced privacy tech like zero-knowledge proofs while still supporting regulatory compliance.
Read Full Story
Latest Crypto News
Stablecoin yield in crypto Clarity Act won't allow rewards on balances, latest text says
1 hour ago
Bitcoin holds above $70,000, but future direction hinges on Iran-U.S. 'talks'
3 hours ago
Solana Foundation targets institutions with new privacy framework
4 hours ago
Prediction market boom spurs new VC fund backed by Polymarket, Kalshi CEOs
4 hours ago
BlackRock is betting billions that tokenized funds will do for Wall Street what the internet did to mail
8 hours ago
Strategy tops up capital-raising plans, bringing potential bitcoin buying power back to $42 billion
9 hours ago
Top Stories
Bitcoin's wild roller coaster ride leaves leveraged traders with $415 million in liquidations
11 hours ago
Backpack launches BP token on Solana with 25% airdrop, no insider allocation
10 hours ago
Tom Lee's Bitmine extends buying streak with $138 million ETH purchase, betting on crypto slump ending
11 hours ago
Strategy returns to 'small' bitcoin purchases, adding $76.6 million in BTC last week
11 hours ago
Polymarket traders bet on Iran ceasefire even as oil shock concerns persist
13 hours ago
In This Article
BTC
$70,711.96
◢4.50%