Hackers Leveraged Hugging Face and ClawHub With 575+ Malicious Skills to Deploy Malware

📅 8 May 2026 at 13:53 UTC📰 Cyber Security NewsView original source ↗

An active malware distribution campaign abusing two prominent AI platforms Hugging Face and ClawHub to deliver trojans, cryptominers, and infostealers disguised as legitimate AI tools and agent extensions. The campaign marks a significant evolution in supply chain attacks, shifting from traditional software repositories to trusted AI ecosystems. Within the OpenClaw ecosystem distributed through ClawHub, Acronis […] The post Hackers Leveraged Hugging Face and ClawHub With 575+ Malicious Skills to Deploy Malware appeared first on Cyber Security News.

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

Hackers exploited Hugging Face and ClawHub platforms to distribute malicious AI tools, leveraging over 575 compromised skills to deliver trojans, cryptominers, and infostealers. This campaign marks a significant shift in supply chain attacks from traditional software repositories to trusted AI ecosystems.

⚙️Technical Details

Affected Systems

ClawHubOpenClaw ecosystem

Attack Vectors

Disguised as legitimate AI tools and agent extensionsMalicious skills distributed through compromised accounts

💥Impact Assessment

Severity: High

Who Is at Risk

Organizations using or interacting with affected platforms, including software developers and users of OpenClaw ecosystem.

🛡️Recommended Actions

1Monitor for suspicious activity on Hugging Face and ClawHub platforms

2Verify software dependencies and update to latest versions

3Implement robust security controls for AI tool development and deployment

📦Affected Products

OpenClaw ecosystemAcronis

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News ↗

← Back to feed