Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
Agent Skill Malware Bypasses AI Security Measures

Agent Skill Malware Bypasses AI Security Measures

Posted on July 6, 2026 By CWS

A new form of malware is successfully bypassing security measures designed to protect popular AI coding assistants like Claude Code and OpenAI Codex. This threat is hidden within ‘agent skills,’ small add-on packages that can evade detection by automated scanners while maintaining their malicious capabilities.

Understanding Agent Skills

Agent skills function similarly to plugins, enabling AI coding agents to acquire new functionalities through simple folders containing plain-language instructions, scripts, and associated files. The ease of creating and distributing these packages has led to rapid growth, with over 40,000 skills available on one marketplace just months after the format’s introduction in late 2025.

This rapid expansion has made agent skills a prime target for malicious actors. Since these skills run with the same level of access as the agent, they can potentially access sensitive developer information such as files, saved passwords, and linked accounts. Attackers have exploited this access to steal browser credentials, SSH keys, and cryptocurrency wallet data by disguising harmful skills as helpful tools.

Research Insights and Techniques

Researchers from Arxiv, in a report shared with Cyber Security News, tested this threat using a tool called SkillCloak to evaluate whether existing scanners could detect cleverly disguised malware. The results were concerning, as disguised malware versions evaded detection by almost all of the eight widely used scanners tested, involving over 1,600 real-world malicious skills.

The evasion techniques hinge on two main strategies. The first, Structural Obfuscation, alters suspicious commands and references in a way that appears harmless to scanners while retaining their malicious intent. The second, known as Self-Extracting Skill Packing, conceals the malicious code in locations ignored by scanners, only reconstructing it when the AI agent runs the skill.

Real-World Implications and Solutions

A real-world campaign named ClawHavoc has already exploited these vulnerabilities by placing hundreds of malicious skills on a public marketplace, resulting in the theft of sensitive information such as saved logins and wallet files. Security experts advise scrutinizing skill setup steps and treating unfamiliar skills cautiously, similar to unknown internet downloads.

To address these vulnerabilities, the researchers developed SkillDetonate, a tool that assesses skills based on behavior rather than appearance. By running skills in a sandbox environment and observing real-time file access, network calls, and data movement, this approach has proven effective in identifying most malicious skills, even those bypassing traditional static scanners.

The overarching lesson for users of AI coding tools is the importance of thorough skill evaluation. While checking a skill’s code is still relevant, it is no longer sufficient. Running unfamiliar skills in isolated environments and monitoring for unusual activity are now critical practices to ensure security.

Cyber Security News Tags:agent skills, AI security, Claude Code, Cybersecurity, Malware, OpenAI Codex, SkillCloak, SkillDetonate

Post navigation

Previous Post: Cross-Platform QuimaRAT MaaS Targets Multiple OS
Next Post: AI Exploited in Prompt Injection Attacks for Crypto Scams

Related Posts

FIN6 Hackers Mimic as Job Seekers to Target Recruiters with Weaponized Resumes FIN6 Hackers Mimic as Job Seekers to Target Recruiters with Weaponized Resumes Cyber Security News
BreachLock and Vanta Bridge the Gap Between Continuous Security Testing and Compliance with New Integration BreachLock and Vanta Bridge the Gap Between Continuous Security Testing and Compliance with New Integration Cyber Security News
Remcos RAT Hidden in GST Note Targets Indian Users Remcos RAT Hidden in GST Note Targets Indian Users Cyber Security News
CypherLoc Kit Traps Users with Fake Microsoft Support Calls CypherLoc Kit Traps Users with Fake Microsoft Support Calls Cyber Security News
Russian Hackers Leverage Oracle Cloud Infrastructure to Scaleway Object Storage Russian Hackers Leverage Oracle Cloud Infrastructure to Scaleway Object Storage Cyber Security News
Crimson Collective Leverages AWS Services to Exfiltrate Sensitive Data Crimson Collective Leverages AWS Services to Exfiltrate Sensitive Data Cyber Security News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • Key Features to Evaluate AI SOC Platforms in 2026
  • PHP Vulnerabilities Pose DoS and Memory Risks
  • AI Exploited in Prompt Injection Attacks for Crypto Scams
  • Agent Skill Malware Bypasses AI Security Measures
  • Cross-Platform QuimaRAT MaaS Targets Multiple OS

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • Key Features to Evaluate AI SOC Platforms in 2026
  • PHP Vulnerabilities Pose DoS and Memory Risks
  • AI Exploited in Prompt Injection Attacks for Crypto Scams
  • Agent Skill Malware Bypasses AI Security Measures
  • Cross-Platform QuimaRAT MaaS Targets Multiple OS

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark