Hackers Use Hugging Face to Deliver npm Malware | Let's Data Science
Source: Letsdatascience
Published:
<p>Security researchers report a multi-stage npm supply chain campaign that delivered a cross-platform implant using Hugging Face as both a download host and an exfiltration backend. GBHackers reports the campaign centers on a malicious package called terminal-logger-utils and related dependent pack