Infostealer Malware Compromises OpenClaw AI Assistant Data

The information displayed in the AIM should not be reported as representing the official views of the OECD or of its member countries.

Infostealer malware has targeted OpenClaw, a popular AI assistant, stealing sensitive configuration files, keys, and memory logs. This breach exposes users to impersonation and unauthorized access, highlighting significant security risks as AI agents become integrated into personal and professional workflows. Researchers warn of increasing threats to AI system data security.[AI generated]

Why's our monitor labelling this an incident or hazard?

The event involves an AI system (OpenClaw AI assistant) whose configuration data containing sensitive credentials was stolen by infostealer malware. This constitutes a direct harm to users' security and privacy, which falls under violations of rights and harm to professional workflows. The AI system's use and its stored secrets were exploited, leading to realized harm. Additionally, the warning about future dedicated malware modules targeting AI agents indicates a credible risk of further incidents. Therefore, this event qualifies as an AI Incident due to the realized harm from the malware attack on the AI system's data.[AI generated]

AI principles

Privacy & data governanceRobustness & digital security

Industries

Digital security

Affected stakeholders

Consumers

Harm types

Human or fundamental rights

Severity

AI incident

AI system task:

Interaction support/chatbots

Articles about this incident or hazard

OpenClaw AI agents targeted by infostealer malware for the first time

2026-02-17

TechRadar

Why's our monitor labelling this an incident or hazard?

Infostealer Targets OpenClaw Configurations and Keys

2026-02-16

TechNadu

Why's our monitor labelling this an incident or hazard?

The event involves an AI system (OpenClaw AI assistant) whose configuration and operational data are stolen by malware. The theft of keys and AI agent personality/memory files directly harms users by enabling impersonation, unauthorized access, and exposure of sensitive personal and professional information. This meets the definition of an AI Incident because the AI system's use and security have been compromised, leading to realized harm to individuals' digital identities and privacy.

Infostealer Targets OpenClaw to Loot Victim's Digital Life

2026-02-17

Infosecurity Magazine

Why's our monitor labelling this an incident or hazard?

The event involves an AI system (OpenClaw) explicitly mentioned as being targeted by malware that stole sensitive AI-related data, including cryptographic keys and session tokens. This theft directly harms the victim by compromising their digital identity and security, which fits the definition of harm to property and communities. The AI system's design and use (including insecure default settings and plaintext storage of secrets) contributed to the incident. The malware's targeting of AI assistant files and the resulting data breach constitute an AI Incident because the AI system's involvement is pivotal to the harm realized.

Infostealer exfiltrates sensitive OpenClaw files

2026-02-18

SC Media

Why's our monitor labelling this an incident or hazard?

The event involves the use and misuse of an AI system (OpenClaw autonomous AI agents) where malware exfiltrated sensitive AI system files, enabling attackers to impersonate the AI agent and access private data. This directly leads to harm through violation of privacy and potential identity compromise, fitting the definition of an AI Incident. The harm is realized, not just potential, and the AI system's role is pivotal in the incident.