Autonomous AI Agents Provide New Class of Supply Chain Attack

Found in Clawhub, promoted on Moltbook, Bob-ptp is an ongoing active agent-based crypto scam.

It’s ironic that new technology often defies the fundamental security rule of zero trust – but that’s the basis of agentic AI. AI agents are often trusted with freedom to roam and act without adequate verification.

Straiker, a firm that focuses on the security of AI applications and agents, has analyzed the 3,505 Claude Skills available on Clawhub. Clawhub is a primary marketplace for ‘skills’, which are essentially AI plugins. Claude describes Skills as “modular capabilities that extend Claude’s functionality [and] that Claude uses automatically when relevant.”

Straiker found 71 Claude Skills that are overtly malicious, and a further 73 that exhibit high-risk behaviors. “The critical finding,” says researcher Dan Regalado, “was an active agent-to-agent attack chain operated by threat actor ‘26medias’ (in Clawhub) and ‘BobVonNeumann’ (in Moltbook and Twitter).”

In this attack ...