Worm // agentic

"The first real hint of an AI agent worm just happened, even though it isn't actually one quite itself (yet): the package cline was compromised to install openclaw with full access, and managed to do so on 4k users' machines before it was detected.

"No doubt, openclaw is still running on many of those users' machines without them knowing. 

"The attacker used a similar title injection attack like one of the ones used by hackerbot-claw, where the attacker performed an injection attack against a PR review agent.

"It seems that openclaw was installed without specific instructions to do anything in this case. But that won't be the case shortly."