top of page
perceptive_background_267k.jpg

hackerbot-claw: An AI-Powered Bot Actively Exploiting GitHub Actions - Microsoft, DataDog, and CNCF Projects Hit So Far

Published:

1 March 2026 at 09:55:36

Alert date:

1 March 2026 at 10:01:01

Source:

stepsecurity.io

Click to open the original link from this advisory

Supply Chain & Dependencies, Security Tools

An AI-powered bot called hackerbot-claw is actively exploiting GitHub Actions workflows. The bot has successfully targeted major organizations including Microsoft, DataDog, and CNCF projects. This represents an automated threat that leverages artificial intelligence to identify and exploit vulnerabilities in CI/CD pipelines. The attacks focus on GitHub Actions, which are widely used for automated software development workflows. The bot's ability to target high-profile organizations suggests sophisticated attack capabilities and potential for widespread impact across the software development ecosystem.

Technical details

Mitigation steps:

Affected products:

GitHub Actions

Related links:

https://www.stepsecurity.io/blog/hackerbot-claw-github-actions-exploitation

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page