www.helpnetsecurity.com Malicious ML models found on Hugging Face Hub - Help Net Security
Researchers have spotted two machine learning (ML) models containing malicious code on Hugging Face Hub, a popular online repository.
Members
840
Posts
63
Active Today
1
Created
2 yr. ago
-
AI Infosec @infosec.pub fcano @infosec.pub AI Risk Repository
airisk.mit.edu The AI Risk RepositoryA comprehensive living database of over 1600 AI risks categorized by their cause and risk domain
-
AI Infosec @infosec.pub ylai @lemmy.ml 
venturebeat.com Anyscale addresses critical vulnerability on Ray framework — but thousands were still exposedFor seven months, 'ShadowRay' gave attackers access to thousands of AI workloads, computing power, credentials, keys and tokens.
-
AI Infosec @infosec.pub ylai @lemmy.ml AI hallucinates software packages and devs download them – even if potentially poisoned with malware
www.theregister.com AI bots hallucinate software packages and devs download themSimply look out for libraries imagined by ML and make them real, with actual malicious code. No wait, don't do that
-
AI Infosec @infosec.pub ylai @lemmy.ml 
spectrum.ieee.org Why Are Large AI Models Being Red Teamed?Intelligent systems demand more than just repurposed cybersecurity tools
-
AI Infosec @infosec.pub ylai @lemmy.ml 
www.theregister.com How 'sleeper agent' AI assistants can sabotage codeToday's safety guardrails won't catch these backdoors
-
AI Infosec @infosec.pub ylai @lemmy.ml NIST: If someone's trying to sell you some secure AI, it's snake oil
www.theregister.com NIST warns of 'snake oil' security claims by AI makersYou really think someone would do that? Go on the internet and tell lies?
-
AI Infosec @infosec.pub ylai @lemmy.ml 
isc.sans.edu Are Local LLMs Useful in Incident Response? - SANS Internet Storm CenterAre Local LLMs Useful in Incident Response?, Author: Tom Webb
-
AI Infosec @infosec.pub ylai @lemmy.ml 
www.theregister.com Microsoft Bing Chat spotted pushing malware via bad adsFrom AI to just plain aaaiiiee!
-
AI Infosec @infosec.pub Capt. AIn @infosec.pub 
www.ncsc.gov.uk Thinking about the security of AI systemsWhy established cyber security principles are still important when developing or implementing machine learning models.
-
AI Infosec @infosec.pub Capt. AIn @infosec.pub GitHub - google/model-transparency
github.com GitHub - sigstore/model-transparency: Supply chain security for MLSupply chain security for ML. Contribute to sigstore/model-transparency development by creating an account on GitHub.
-
AI Infosec @infosec.pub kristoff @infosec.pub disinformation videos on AI ?
Hi all,
Had a small chat on #AI with somebody yesterday, when this video came up: "10 Things They're NOT Telling You About The New AI" (*)
What strikes me the most on this video is not the message, but the way it is brought. It has all the prints of #disinformation over it, .. especially as it is coming from a youtube-channel that does not even post a name or a person.
Does anybody know this organisation and who is behind it?
Is this "you are all going to lose your job of AI and that's all due to " message new? What is the goal behind this?
(Sorry to post this message here. I have been looking for a lenny/kbin forum on disinformation, but did not find it, so I guess it is most relevant here)
-
AI Infosec @infosec.pub netrom @infosec.pub OWASP Top 10 for LLMs (v1.0)
owasp.org OWASP Top 10 for Large Language Model Applications | OWASP FoundationAims to educate developers, designers, architects, managers, and organizations about the potential security risks when deploying and managing Large Language Models (LLMs)
