Hugging Face - Geek Feed

Fake OpenAI repository on Hugging Face pushes infostealer malware

May 12, 2026May 12, 2026 geekfeed0Tagged ai, Artificial Intelligence, Hugging Face, Info Stealer, Information Stealer, malware, Model

A malicious Hugging Face repository that reached the platform’s trending list impersonated OpenAI’s “Privacy Filter” project to deliver information-stealing malware to Windows users. The repository briefly reached #1 on Hugging Face and accumulated 244,000 downloads before the platform responded to reports and removed it. The Hugging Face platform lets developers and researchers share AI models, […]

2 mins read

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

April 19, 2026April 19, 2026 geekfeed0Tagged Actively Exploited, CVE-2026-39987, Hugging Face, malware, Marimo, NKAbuse, rce, Remote Code Execution

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces. Attacks leveraging the remote code execution flaw (CVE-2026-39987) started last week for credential theft, less than 10 hours after technical details were disclosed publicly, according to data from cloud-security company Sysdig. Sysdig researchers continued […]

3 mins read

Hugging Face abused to spread thousands of Android malware variants

February 2, 2026February 2, 2026 geekfeed0Tagged Abuse, android, Hugging Face, malware, mobile, Polymorphism, RAT, remote access trojan

A new Android malware campaign is using the Hugging Face platform as a repository for thousands of variations of an APK payload that collects credentials for popular financial and payment services. Hugging Face is a popular platform that hosts and distributes artificial intelligence (AI), natural language processing (NLP), and machine learning (ML) models, datasets, and […]

3 mins read