Security researchers have uncovered a malicious npm package that pretends to be a legitimate tool called OpenClaw Installer. In reality, it delivers a powerful malware framework that steals developer secrets, browser data, crypto wallet files, and system credentials, then installs a persistent remote access tool for long-term control. The package looks harmless at first. Its […] The post GhostClaw Poses As OpenClaw To Steal Sensitive Developer Data appeared first on Cyber Security News.