MicrosoftSystem64 Malware Abuses HuggingFace Platform for Stealthy Data Theft
A newly discovered malware called MicrosoftSystem64 has been quietly stealing data from infected computers by routing stolen files through HuggingFace, the popular AI platform used by researchers and…
Read the full articleYou might also wanna read
Inside MicrosoftSystem64: A Supply Chain RAT Exfiltrating to HuggingFace
Deep technical analysis of MicrosoftSystem64, an 81 MB Node.js SEA binary deployed via malicious npm packages. This RAT steals browser crede
Malicious npm Package js-logger-pack Ships a Multi-Platform WebSocket Stealer
js-logger-pack spent three weeks on npm evolving from a probe into a full infostealer and then a binary dropper. Early versions installed an
Malicious Hugging Face Repository Typosquats OpenAI
HiddenLayer reveals infostealer malware in a Hugging Face repository
MAL-2026-10580: Malicious code in ethers-core (npm)
The ethers-core npm package versions 6.13.5 and 6.13.7 contain malicious code that exfiltrates sensitive installer secrets such as private k

Microsoft discovers new multi-malware package 'GigaWiper' capable of deploying wipers and ransomware
One wiper can destroy a computer in different ways, but it can also spy on users.

Microsoft Details AsyncAPI npm Supply Chain Attack: Import-Time Malware Bypassed Traditional Defenses
Microsoft has released a comprehensive technical analysis of the recent AsyncAPI npm supply chain compromise, providing new insights into ho

Comments
Sign in to join the conversation.
No comments yet. Be the first.