OpenClaw developers hit by GitHub phishing campaign promising fake “CLAW” airdrops
OpenClaw’s developer community was hit by a coordinated phishing campaign in mid-March 2026, prompting the project’s creator to issue a public warning on March 19. The attackers posed as OpenClaw across GitHub and cloned websites, using fake token-reward messages to lure developers into connecting wallets and exposing their assets.