Dark Reading

'Sleepy Pickle' Exploit Subtly Poisons ML Models

Researchers have concocted a new way of manipulating machine learning (ML) models by injecting malicious code into the process of serialization. The method focuses on the "pickling" process used to ...
Dark Reading

Critical Bugs Put Hugging Face AI Platform in a 'Pickle'

Two critical security vulnerabilities in the Hugging Face AI platform opened the door to attackers looking to access and alter customer data and models. One of the security weaknesses gave attackers a ...
heise online

Hugging Face: Malicious ML models uncovered on development platform

IT researchers have discovered malicious ML models on the Hugging Face AI development platform. Attackers could use them to infiltrate commands. IT researchers have discovered maliciously manipulated ...