Hackerbot-Claw: The First AI Agent Threat Actor Targeting Major GitHub Repos
Security researchers have documented what they’re calling the first AI agent threat actor in the wild: an autonomous bot named Hackerbot-Claw (also tracked as Chaos Agent) that spent 37 hours in late February 2026 systematically targeting GitHub repositories from Microsoft, DataDog, Aqua Security, and CNCF. The campaign wasn’t noisy. It wasn’t a spray-and-pray attack. It was methodical, multi-technique, and ultimately successful: the bot exfiltrated a GitHub token with write permissions from one of the most widely-used repositories on the platform. ...