https://www.manifold.security/blog/clawhub-clawswarm-agent-crypto-recruitment
Head of Research, Ax Sharma, at Manifold Security have uncovered a sophisticated new threat campaign leveraging two related malware frameworks — dubbed “ClawHub” and “ClawSwarm” — that are specifically designed to compromise and recruit AI agents into illicit cryptocurrency operations. The discovery represents a novel and concerning evolution in the cybercriminal threat landscape, as attackers shift their focus from traditional endpoint targets toward the growing ecosystem of autonomous AI agents. By hijacking these agents, threat actors are effectively building AI-powered botnets capable of conducting large-scale cryptocurrency mining and other financially motivated malicious activity.
ClawHub serves as the initial infection and recruitment mechanism, establishing a foothold by targeting vulnerable AI agent deployments and enrolling them into the attacker’s controlled infrastructure. ClawSwarm then coordinates the compromised agents as a collective, orchestrating their computational resources toward cryptocurrency generation in a manner that can be difficult to detect given the distributed and automated nature of modern AI workflows. The campaigns exploit the inherent trust and elevated permissions that AI agents are often granted within enterprise environments, making them particularly dangerous and difficult to contain once an infection takes hold.
The findings underscore a rapidly emerging blind spot in enterprise security strategies, as many organisations have yet to implement robust monitoring and access controls specifically tailored for AI agent deployments. Manifold Security is urging organisations to treat AI agents with the same level of scrutiny applied to traditional privileged accounts, implementing strict permission boundaries, behavioural monitoring, and anomaly detection to identify potential compromise. As the adoption of autonomous AI agents continues to accelerate across industries, researchers warn that campaigns like ClawHub and ClawSwarm are likely a preview of a growing class of AI-targeted threats that defenders must prepare to face.