Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

Martin Seeger @masek@infosec.exchange

2/20/2026, 7:35:01 AM

Public

RE: https://infosec.exchange/@masek/116092339012008036

Background to a previous post:

In my company, we are responsible for operating a SOC for several customers.

The most frequent security alert we are currently getting is: "Installation of OpenClaw attempted".

That are not noobs who are doing that, but experienced devs with access to core infrastructure in their enterprises. And they are attempting to install it on their work PC.

In that context: https://cybersecuritynews.com/openclaws-top-skill-malware/

koehntopp ~ : @koehntopp@infosec.exchange

2/20/2026, 7:48:04 AM

Public

@masekMartin Seeger
I read something about an "AI agent" installing OpenClaw in the background, but I can't find it again...

We're in for a ride...

If you have a fediverse account, you can quote this note from your own instance. Search https://infosec.exchange/users/koehntopp/statuses/116101852960122926 on your instance and quote it. (Note that quoting is not supported in Mastodon.)