Cybersecurity: Mauritian Experts Contribute to Securing the AI Assistant OpenClaw

The team at CyberStorm.mu has identified several malicious extensions on the OpenClaw platform. Their vigilance has neutralized spy tools and secured user data on a global scale.A group of cybersecurity enthusiasts based in Mauritius, CyberStorm.mu, recently pinpointed several harmful extensions linked to OpenClaw, an artificial intelligence assistant. They have played a crucial role in securing the platform for its users.OpenClaw, which gained significant popularity worldwide at the beginning of 2026, is a digital assistant that can be installed locally on a personal computer. It facilitates reading emails, managing schedules, controlling smart home devices, and executing various everyday tasks via messaging applications like WhatsApp or Discord. Its functionalities can be enhanced through add-ons known as "skills," available on a dedicated marketplace called ClawHub.According to CyberStorm.mu, malicious actors have exploited this open system to publish fake "skills" that appear beneficial but are designed to compromise user security. These extensions can attempt to collect sensitive information such as passwords, personal data, or cryptocurrency wallet details.During their analysis, CyberStorm.mu members detected three problematic "skills" in a short period. The first appeared as a login tool for X (formerly Twitter) but contained a backdoor that could allow remote control of the user's computer. The team promptly alerted the lead developer of OpenClaw and issued a warning on the relevant page.A second module, recently uploaded, concealed instructions to download malware from a suspicious Internet address. Then, on February 3, 2026, a third "skill" called "moltbook," supposedly dedicated to social networks, was identified with a similar mechanism. With each report made by CyberStorm.mu, Peter Steinberger, the lead developer of OpenClaw, swiftly removed the identified extensions.These incidents highlight the risks associated with open platforms that allow the addition of features without strict controls.They also emphasize the importance of community vigilance, as the work of CyberStorm.mu has helped limit users' exposure to these threats. "This illustrates how new and promising tools can sometimes carry risks when anyone can add features without strict controls. The good news is that vigilant individuals - like the team from Mauritius - are helping to detect issues at an early stage," a representative from CyberStorm.mu explained.