FI-0719SaaSFeaturedHigh
Tool MisuseHugging Face disclosed a production breach driven end to end by an autonomous AI agent
On July 16, 2026, Hugging Face disclosed an intrusion into its production infrastructure that it assessed was driven, end to end, by an autonomous AI agent system. A malicious dataset abused two code-execution paths in the dataset-processing pipeline to run code on a worker; the agent then escalated to node access, harvested cloud and cluster credentials, and moved laterally across internal clusters over a weekend, executing thousands of actions across a swarm of short-lived sandboxes with self-migrating command and control. Internal datasets and service credentials were accessed. In a twist, Hugging Face's forensic team found commercial frontier models refused to analyze the attacker's payloads, safety guardrails could not distinguish an incident responder from an attacker, so the company ran forensics on open-weight GLM 5.2 on its own infrastructure.
- Confidence
- High (multi-source, primary)