Researchers in cybersecurity revealed that they had discovered an instance of an information-stealing virus effectively infiltrating a victim's OpenClaw configuration environment (previously known as Clawdbot and Moltbot) This article explores openclaw module stealer. . "The shift from stealing browser credentials to harvesting the'souls' and identities of personal AI [artificial intelligence] agents is a significant milestone in the evolution of infostealer behavior," Hudson Rock stated.

Based on the details of the infection, Hudson Rock's CTO, Alon Gal, told ZeroOwl that the stealer was probably a Vidar variant. Since late 2018, Vidar, an off-the-shelf information stealer, has been in operation.

However, the cybersecurity firm claimed that a "broad file-grabbing routine" that is intended to search for particular file extensions and specific directory names containing sensitive data, rather than a custom OpenClaw module within the stealer malware, was responsible for the data capture. The open-source project currently has over 200,000 stars on GitHub. Peter Steinberger, the founder of OpenClaw, will join OpenAI, according to OpenAI CEO Sam Altman, who announced on February 15, 2026, that "OpenClaw will live in a foundation as an open source project that OpenAI will continue to support."