OpenClaw Explodes in Popularity, But Beware These Crypto Scams

In the fast-paced world of AI and open-source innovation, few projects have captured attention like OpenClaw. What started as a hobby project by developer Peter Steinberger has skyrocketed to over 140,000 GitHub stars in mere days, making it one of the fastest-growing open-source tools ever. But with great hype comes great risk—scammers are exploiting the buzz to peddle fake cryptocurrencies and malware, turning a promising AI agent into a magnet for blockchain fraud. This post dives into the problem of rising scams, how to spot them, and the benefits of staying vigilant so you can safely explore this cutting-edge tech.

The Rise of OpenClaw: From Hobby to Hype

OpenClaw, formerly known as Clawdbot and then Moltbot, is an open-source AI agent designed to automate complex tasks on your local device. It integrates with apps, services, and even your file system, giving it powerful capabilities—like a personal assistant with superpowers. Launched just a few months ago, the project’s rapid renames due to trademark issues created chaos that scammers quickly capitalized on.

The challenge? Viral interest in AI agents like OpenClaw opens doors for opportunists. As the project gained traction, fake repositories, hijacked social accounts, and phony tokens emerged almost instantly. This isn’t just a tech story—it’s a cautionary tale about how hype in the crypto and AI spaces can lead to real financial losses.

The Crypto Scams Lurking in the Shadows

The problem starts with brand confusion. When Steinberger renamed the project, scammers snatched the old GitHub and X handles in seconds, using them to promote fake crypto tokens like $CLAWD on Solana. This pump-and-dump scheme briefly hit a $16 million market cap before crashing, leaving investors rug-pulled and out of pocket.

• Fake Tokens: Scammers launched $CLAWD, claiming ties to OpenClaw. The token surged on hype but tanked after Steinberger called it out as a scam.
• Malicious Repos and Extensions: Forked versions of the OpenClaw repo include hidden malware, like crypto stealers that target wallets via obfuscated code in package.json files.
• Hijacked Accounts: Fake X profiles posing as OpenClaw team members push investment scams, airdrops, and rug pulls.

These scams aren’t isolated; they’re part of a broader trend where AI hype intersects with crypto greed. For instance, similar tactics hit other projects, with losses in the millions from supply chain attacks and credential theft. The action here? Developers and users must verify sources rigorously to avoid falling victim.

Security Risks: More Than Just Scams

Beyond crypto fraud, OpenClaw’s design raises legitimate security flags. As an AI agent with deep system access, misconfigurations can expose API keys, OAuth credentials, and personal data. Researchers have uncovered vulnerabilities like remote code execution (RCE) via malicious web pages and cross-site WebSocket hijacking.

One exposed Moltbook database revealed 1.5 million API keys and 35,000 email addresses, highlighting how even hobby projects can become “security nightmares” without proper safeguards.

The benefit of addressing these? By adopting zero-trust principles and running in siloed environments, users can harness OpenClaw’s potential without compromising their setup.

Developer Warnings and Community Response

Steinberger himself has been vocal about the scams. In a pointed X post, he declared:

To all crypto folks: Please stop pinging me, stop harassing me. I will never do a coin. Any project that lists me as coin owner is a SCAM. No, I will not accept fees. You are actively damanging the project.

— Peter Steinberger 🦞 (@steipete) January 27, 2026

Community members echo this caution. Security expert Itamar Golan warned about fake repos in his post:

BE CAREFUL. Warning for anyone jumping on shiny new AI or bot tools. An open-source project called Clawdbot blew up fast. Then came a trademark dispute with Anthropic’s Claude, a forced rename to MoltBot, and a brief moment of chaos. That was ENOUGH. Fake repos popped up within minutes…

— Itamar Golan 🤓 (@ItakGol) January 28, 2026

And Jamieson O’Reilly highlighted exposed data risks:

https://x.com/i/article/2015345595687583744

— Jamieson O’Reilly (@theonejvo) January 25, 2026

Steinberger’s response to the backlash? He reminds everyone it’s a free hobby project, not a polished enterprise tool.

The amount of crap I get for putting out a hobby project for free is quite something. People treat this like a multi-million dollar business… It’s supposed to inspire people. And I’m glad it does.

— Peter Steinberger 🦞 (@steipete) January 27, 2026

How to Protect Yourself: Stay Safe in the AI-Crypto Wild West

The solution to these challenges is straightforward: verification and caution. Here’s a step-by-step guide:

1. Verify Sources: Only download from the official OpenClaw GitHub repo. Check for the latest name and avoid forked versions.
2. Avoid Fake Tokens: Remember, OpenClaw has no official cryptocurrency. Any $CLAWD or similar is a scam.
3. Secure Your Setup: Run in a sandbox, use VPNs, and audit permissions. Tools like antivirus and code scanners can help spot malware.
4. Follow Official Channels: Stick to Steinberger’s X account for updates.

By taking these actions, you reap the benefits: enjoying innovative AI without the pitfalls of fraud. For more on AI security, check out resources from high-authority sites like Malwarebytes on impersonation campaigns, ZDNet’s security analysis, The Verge’s coverage, Permiso’s ecosystem insights, and Forbes on growing concerns.

Want to use OpenClaw safely and legitimately for crypto trading? Check out our 10 real-world automation use cases (no tokens, no hype) and guide to building profitable arbitrage bots with proper security practices.

OpenClaw represents the exciting future of AI agents, but remember: in crypto and tech, if it sounds too good to be true, it probably is. Stay informed, stay safe, and keep innovating.