Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.

Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...

Stop throwing money at GPUs for unoptimized models; using smart shortcuts like fine-tuning and quantization can slash your ...

Shadow-Aether-040 used vulnerability scanners to identify vulnerabilities on targeted servers and then deploy Web shells for ...

Hundreds of packages across npm and PyPI have been compromised in a new Shai-Hulud supply-chain campaign delivering ...

First AI zero-day: Google detected cybercriminals using AI to identify and exploit a previously unknown flaw in a popular web tool. Exploits outpace patches: Mandiant reports AI-assisted attack code ...

Early adopters are using the model for diverse applications, such as auto-clipping highlights from live sports, which ...

A malicious repository on Hugging Face impersonated OpenAI’s “Privacy Filter” project and briefly reached the platform’s top trending position before removal ...

The Helvetia Tavern is where Oregonians go when they’re serious about their beef and cheese consumption. Picture yourself ...

A fake repo impersonating the OpenAI Privacy Filter model racked up 244,000 downloads in under 18 hours before Hugging Face ...