Malicious AI Model Clone Surges on Hugging Face—Cryptocurrency Community Warned of Credential Harvesting
A fraudulent AI model repository mimicking OpenAI’s Privacy Filter accumulated over 244,000 downloads on Hugging Face within 18 hours, embedding credential-stealing malware that threatened cryptocurrency developers’ private keys and API credentials. The incident exposes critical supply chain vulnerabilities across blockchain development ecosystems, from DeFi platforms to Ethereum-based projects.
