71 Malicious Skills Found on ClawHub. Here's How to Protect Your Agent.

Two days ago, security researchers dropped a report that should make every OpenClaw user stop and read carefully. Seventy-one malicious skills were found living on ClawHub — the main marketplace where agents discover and install capabilities. Not lurking in some obscure corner. Right there, in the open, with download counts and star ratings. The full scope is worse: 341 total malicious skills were identified across the ecosystem. The vulnerability is being called ClawJacked. If you haven't updated to OpenClaw v2026.2.26 yet, do that now before reading the rest of this. What Actually Happened The ClawJacked flaw let malicious sites push rogue skills into an agent's context without explicit user confirmation. Attackers used it systematically. They published skills disguised as crypto trading tools — things like "BTC Signal Analyzer" or "DeFi Yield Scanner" — and waited for agents to install them. Once installed, these skills did two things: Exfiltrated data. They scraped API keys, wallet