Infosecurity-magazine.com

Malicious Machine Learning Model Attack Discovered on PyPI

A new campaign exploiting machine learning (ML) models via the Python Package Index (PyPI) has been observed by cybersecurity researchers. ReversingLabs said threat actors are using the Pickle file ...
Dark Reading

'Sleepy Pickle' Exploit Subtly Poisons ML Models

Researchers have concocted a new way of manipulating machine learning (ML) models by injecting malicious code into the process of serialization. The method focuses on the "pickling" process used to ...
GIGAZINE

With the release of the image generation AI 'Stable Diffusion' as open source, many useful tools such as the

Derived models are hosted in online repositories such as Hugging Face and GitHub, or distributed using torrents and uploaders, but malware is installed in models published by unspecified people. There ...