A fake repo impersonating the OpenAI Privacy Filter model racked up 244,000 downloads in under 18 hours before Hugging Face ...
Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...
Security researchers have uncovered covert infostealer malware hidden in one of the top-ranking repositories on Hugging Face, ...
TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
Hyunwoo Kim, also known as "V4bel," recently disclosed "Dirty Frag," a dangerous security vulnerability that provides local ...
Dirty Frag is a new Linux bug putting your system at risk - and there's no easy fix yet ...
The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are ...
The actively exploited flaw builds on Dirty Pipe and Copy Fail techniques to overwrite page cache and gain full system ...
Fake OpenAI Privacy Filter hit #1 on Hugging Face with 244,000 downloads, spreading infostealer malware to Windows users.
Fedora pushed kernel 7.0.4 to stable to fix the Dirty Frag and Copy Fail 2 vulnerabilities. Both CVE-2026-43284 and ...
6don MSN
10 trillion downloads are crushing open-source repositories - here's what they're doing about it
10 trillion downloads are crushing open-source repositories - here's what they're doing about it ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results