LM Studio may possibly be infected with sophisticated malware.

LM Studio, the widely-used desktop application that allows users to run and manage local large language models (LLMs) such as Meta's Llama 3 and Mistral AI's models offline, is at the center of a potential security incident. A user on Reddit reported that Windows Defender identified and quarantined three separate suspicious files associated with the software during a full system scan. The user, who describes themselves as a hobbyist "tinkerer," noted the malware appeared sophisticated enough to disrupt core Windows functions, specifically the operating system's update mechanism. To resolve the issue, they had to manually rename update folders via the command line. The report has sparked concern within the AI enthusiast community, where LM Studio is a favored tool for its ease of use in downloading and experimenting with models without an internet connection.

The developer behind LM Studio has not yet issued an official statement regarding the alleged malware. The situation highlights the growing security risks associated with the booming ecosystem of local AI tools, where users often download and execute software from independent developers to run powerful models on their personal hardware. In response to the scare, some community members are advising increased caution, suggesting practices like running such applications within virtual machines (VMs) or on isolated Linux systems to contain potential threats. While it remains possible this is a false positive from antivirus software, the incident serves as a critical reminder for the hundreds of thousands of users in the local AI space to prioritize software provenance and system isolation when testing new and rapidly evolving tools.