Hugging Face Supply Chain Attack: Open-OSS/privacy-filter Is a Disguised Infostealer — 779 Upvotes Warning
r/LocalLLaMA·high signal
A fake model titled 'Open-OSS/privacy-filter' on Hugging Face is actually a customized Python-based infostealer virus impersonating OpenAI's legitimate privacy filter model. The r/LocalLLaMA warning post hit 779 upvotes and 114 comments, with users detailing how the malware uses repository trust to execute credential theft. This follows a broader pattern documented by SecurityWeek and Sysdig of HuggingFace and ClawHub being weaponized for malware distribution in 2026.