Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.

Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...

Stop throwing money at GPUs for unoptimized models; using smart shortcuts like fine-tuning and quantization can slash your ...

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering ...

First AI zero-day: Google detected cybercriminals using AI to identify and exploit a previously unknown flaw in a popular web tool. Exploits outpace patches: Mandiant reports AI-assisted attack code ...

Early adopters are using the model for diverse applications, such as auto-clipping highlights from live sports, which ...

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and ...

A malicious repository on Hugging Face impersonated OpenAI’s “Privacy Filter” project and briefly reached the platform’s top trending position before removal ...

The Helvetia Tavern is where Oregonians go when they’re serious about their beef and cheese consumption. Picture yourself ...

A fake repo impersonating the OpenAI Privacy Filter model racked up 244,000 downloads in under 18 hours before Hugging Face ...