{"id":224122,"date":"2026-06-02T03:15:07","date_gmt":"2026-06-02T07:15:07","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/02\/malicious-hugging-face-repository-typosquats-openai\/"},"modified":"2026-06-02T03:15:10","modified_gmt":"2026-06-02T07:15:10","slug":"malicious-hugging-face-repository-typosquats-openai","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/02\/malicious-hugging-face-repository-typosquats-openai\/","title":{"rendered":"Malicious Hugging Face Repository Typosquats OpenAI"},"content":{"rendered":"<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/malicious-hugging-face-repo\/\">Malicious Hugging Face Repository Typosquats OpenAI<\/a><\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/malicious-hugging-face-repo\/\">https:\/\/www.infosecurity-magazine.com\/news\/malicious-hugging-face-repo\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-26 03:01:24<\/a><\/p>\n<p>Source Domain: <a href=\"www.infosecurity-magazine.com\">www.infosecurity-magazine.com<\/a><\/p>\n<p><strong>Summary:<\/strong><br \/>\nSecurity researchers at HiddenLayer discovered malicious infostealer malware embedded in a prominent repository on Hugging Face&#8217;s top-trending repositories list. The repository, dubbed &#8220;Open-OSS\/privacy-filter,&#8221; closely mimicked an authentic release by OpenAI, gaining 244,000 downloads in just 18 hours, which were potentially artificially inflated to appear legitimate. The attack involved a multi-stage deployment: users were directed to clone the repo and execute executable files specific to their operating system. These files encoded a Rust-based infostealer that employed various techniques to bypass detection and security controls. The infostealer was designed to harvest credentials including browser passwords, session cookies, cryptocurrency wallets, and Discord tokens. HiddenLayer advised anyone who executed files from the malicious repository to treat their systems as compromised and undertake thorough mitigation actions such as wiping the affected device, rotating all credentials, and moving cryptocurrency funds to new wallets on clean devices. The incident underscores the critical threat posed by compromised software repositories within the AI supply chain.<\/p>\n<p><strong>Key Points:<\/strong><\/p>\n<ul>\n<li>A prominent Hugging Face repository, mimicking an authentic privacy filter release by OpenAI, was found to contain malicious infostealer malware.<\/li>\n<li>The repository falsely gained significant traction, amassing 244,000 downloads and indications of inflated popularity metrics within hours.<\/li>\n<li>The infostealer employs advanced tactics to evade detection and employs measures that include disabling security features like AMSI and ETW.<\/li>\n<li>Mitigation recommendations emphasize isolation and full system wiping, with a focus on rotating compromised credentials and moving cryptocurrency assets to secure new wallets.<\/li>\n<li>The attack highlights the broader issue of infostealers contributing to a large pool of stolen credentials and their impact on cybercrime.<\/li>\n<\/ul>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Malicious Hugging Face Repository Typosquats OpenAI https:\/\/www.infosecurity-magazine.com\/news\/malicious-hugging-face-repo\/ Publish Date: 2026-05-26 03:01:24 Source Domain: www.infosecurity-magazine.com Summary:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":224124,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.infosecurity-magazine.com\/webpage\/og\/2ae84b58-dc8d-42db-b4b6-ca6855ca5db4.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,36,32],"class_list":["post-224122","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-infostealer","tag-malware"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224122"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=224122"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224122\/revisions"}],"predecessor-version":[{"id":224126,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/224122\/revisions\/224126"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/224124"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=224122"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=224122"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=224122"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}