According to Manifold researcher Ax Sharma, 30 plugins on ClawHub disguised as legitimate AI tools have been downloaded over 9,800 times while secretly converting users' AI assistants into cryptocurrency workers. The plugins, published under the account imaflytok, appear as routine task schedulers and monitoring tools but contain hidden instructions that execute unauthorized operations.
Once installed, the plugins automatically register users' AI assistants with third-party servers, generate cryptocurrency wallets, and extract private keys without user consent or notification. The assistants then check in every 4 hours awaiting task assignments. Sharma noted the plugins contain no malicious code detectable by security scanners, using only standard interfaces and legitimate tools, making them difficult to identify through conventional security reviews.
