Hugging Face Repositories Abused in New Android Malware Campaign

Attackers exploited Hugging Face’s trusted infrastructure to spread an Android RAT, using fake security apps and thousands of ...

It might be time to put down your TV remote and use your phone instead

It's time to control your TV from your phone ...

Hugging Face abused to spread thousands of Android malware variants

A new Android malware campaign is using the Hugging Face platform as a repository for thousands of variations of an APK ...
SecurityWeek

Hugging Face Abused to Deploy Android RAT

Hackers have abused the Hugging Face infrastructure to host a malicious payload and infect Android users with a remote access trojan.

Android users, government has a ‘critical’ warning for you: New flaw may allow attackers to take control of your device

Indian authorities have issued a critical warning to Android users regarding a Dolby audio vulnerability (CIVN–2026-0016). This flaw allows remote attackers to execute arbitrary code on targeted ...
Infosecurity Magazine

Android RAT Uses Hugging Face to Host Malware

A new Android remote access trojan (RAT) uses popular AI platform Hugging Face to host and distribute malicious payloads, ...

Beware! Hackers can steal sensitive data from your Android phone using this app

Android users face a new malware threat spreading via fake security apps, stealing banking data and messages through trusted ...

5 Android Bluetooth trackers you should buy instead of the Apple AirTag 2nd gen

Apple's new AirTag packs better UWB and a louder siren, but lacks Android compatibility and other features. Here are 5 trackers you should buy instead.
CSO Online

Ivanti patches two actively exploited critical vulnerabilities in EPMM

The code injection flaws allow for unauthenticated remote code execution on Ivanti Endpoint Manager Mobile deployments, but ...

FBI warns QR code phishing used in North Korean cyber spying

The North Korean hacking group Kimsuky is using QR code phishing to target Americans with fake questionnaires and malicious ...
SecurityWeek

Ivanti Patches Exploited EPMM Zero-Days

Ivanti has patched CVE-2026-1281 and CVE-2026-1340, two Endpoint Manager Mobile (EPMM) flaws exploited as zero-days.
CSO Online

Hugging Face infra abused to spread Android RAT in a large-scale malware campaign

A fake security app called TrustBastion is being used to drop remote‑access malware hosted on Hugging Face, with attackers generating thousands of Android package variants to evade detection, ...