Active Agent-Based Crypto Scam Exploits Trust in AI Agent Networks

First reported

23.02.2026 14:30

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

An ongoing crypto scam, Bob-ptp, is actively exploiting trust in AI agent networks. The attack uses malicious Claude Skills on Clawhub, a marketplace for AI plugins, to compromise Solana wallet private keys and redirect payments through attacker-controlled infrastructure. The threat actor, BobVonNeumann, promotes the malicious skill on Moltbook, a social media platform for AI agents, leveraging the implicit trust between agents to spread the attack laterally without further human interaction. The campaign highlights a new class of supply chain attacks that combine traditional supply chain poisoning with social engineering targeting algorithms rather than humans.

Timeline

23.02.2026 14:30 1 articles · 4h ago

Active Agent-Based Crypto Scam Exploits Trust in AI Agent Networks
An ongoing crypto scam, Bob-ptp, is actively exploiting trust in AI agent networks. The attack uses malicious Claude Skills on Clawhub to compromise Solana wallet private keys and redirect payments through attacker-controlled infrastructure. The threat actor, BobVonNeumann, promotes the malicious skill on Moltbook, leveraging the implicit trust between agents to spread the attack laterally without further human interaction.
Show sources

Autonomous AI Agents Provide New Class of Supply Chain Attack — www.securityweek.com — 23.02.2026 14:30
Open in new tab

Information Snippets

Clawhub is a primary marketplace for Claude Skills, which are AI plugins that extend the functionality of the Claude AI model.
First reported: 23.02.2026 14:30

1 source, 1 article
Show sources
- Autonomous AI Agents Provide New Class of Supply Chain Attack — www.securityweek.com — 23.02.2026 14:30
Straiker, an AI security firm, analyzed 3,505 Claude Skills on Clawhub and found 71 overtly malicious and 73 exhibiting high-risk behaviors.
First reported: 23.02.2026 14:30

1 source, 1 article
Show sources
- Autonomous AI Agents Provide New Class of Supply Chain Attack — www.securityweek.com — 23.02.2026 14:30
The threat actor '26medias' on Clawhub and 'BobVonNeumann' on Moltbook and Twitter operates an active agent-to-agent attack chain.
First reported: 23.02.2026 14:30

1 source, 1 article
Show sources
- Autonomous AI Agents Provide New Class of Supply Chain Attack — www.securityweek.com — 23.02.2026 14:30
The malicious skill bob-p2p instructs agents to store Solana wallet private keys in plaintext, purchase worthless $BOB tokens, and route payments through attacker-controlled infrastructure.
First reported: 23.02.2026 14:30

1 source, 1 article
Show sources
- Autonomous AI Agents Provide New Class of Supply Chain Attack — www.securityweek.com — 23.02.2026 14:30
The attack spreads laterally through automated agent collaboration, shared workflows, and dependency chains without further human interaction.
First reported: 23.02.2026 14:30

1 source, 1 article
Show sources
- Autonomous AI Agents Provide New Class of Supply Chain Attack — www.securityweek.com — 23.02.2026 14:30
The $BOB token is flagged as a 'rug pull' scam with a 100% probability by Birdeye, an AI-based reputation tool.
First reported: 23.02.2026 14:30

1 source, 1 article
Show sources
- Autonomous AI Agents Provide New Class of Supply Chain Attack — www.securityweek.com — 23.02.2026 14:30
The attack represents a new class of supply chain poisoning combined with social engineering campaigns targeting algorithms.
First reported: 23.02.2026 14:30

1 source, 1 article
Show sources
- Autonomous AI Agents Provide New Class of Supply Chain Attack — www.securityweek.com — 23.02.2026 14:30