CertiK warns malicious OpenClaw plugins can drain crypto wallets

Security firm CertiK has issued a warning about the risk of cryptocurrency theft through the popular AI agent platform OpenClaw. The firm explained that malicious skill plugins are being used as an attack vector to steal authentication information from major browser wallets such as MetaMask and Phantom. CertiK strongly advises non-expert users to refrain from installing OpenClaw until a security-verified version is released.