Skip to main content
Security

820 Malicious Agent Skills and Nobody Noticed

If you are working on agent security and ai security, this is for you.

Take Interest Inc.5 min readLast reviewed 2026-03-10
ai-securitysupply-chainagent-safety
Table of contents

Key takeaway

Koi Security found 820+ malicious skills on ClawHub in March 2026, more than doubling from 324 just weeks earlier

Key takeaway

Agent skill marketplaces repeat every mistake app stores made, except agents have deeper system access than mobile apps ever did

Key takeaway

Audit every third-party skill your agents use: who published it, when was it updated, and what permissions does it request

Cite this post

Take Interest Inc. (2026). 820 Malicious Agent Skills and Nobody Noticed. TAKE INTEREST. https://takeinterest.ai/blog/820-malicious-agent-skills-nobody-noticed

Take it with you

Save the link to come back to it, or pass it along.