GhostClaw expands beyond npm: GitHub repositories and AI workflows deliver macOS infostealer
Essential information
- Published
- 23/03/2026 09:27
- Modified
- 27/03/2026 00:02
- Tags
- 2026-03-23 credential-theft ghostclaw ghostloader github macos supply chain attack
- Related entities
- 16 observables, 1 intrusion sets (apt), 10 techniques (mitre), 2 malware, 1 others
Description
The GhostClaw malware campaign has expanded its distribution methods beyond npm packages to include GitHub repositories and AI-assisted development workflows. The attackers impersonate legitimate tools and utilize multi-stage payloads to steal credentials and retrieve additional malicious code. The infection chain involves executing shell commands, presenting fake authentication prompts, and establishing persistence. The campaign leverages both manual installation through README instructions and automated AI-assisted workflows. Multiple GitHub repositories have been identified, all communicating with a common command-and-control infrastructure. This shift in tactics allows the attackers to target a broader range of victims, including developers and users of AI-assisted coding tools.