‘Hugging Face’ AI fashions, buyer knowledge in danger to cross-tenant assaults – Cyber Information

In an eye-opening piece of risk intelligence, the cloud-focused Wiz analysis crew partnered with fast-growing AI-as-a-service supplier Hugging Face to uncover flawed, malicious fashions utilizing the “pickle format” that would put the information and synthetic intelligence fashions of 1000’s of Hugging Face clients in danger. An April 4 weblog submit by Wiz researchers mentioned potential … Read more

AI-as-a-Service Suppliers Susceptible to PrivEsc and Cross-Tenant Assaults – Cyber Information

Apr 05, 2024NewsroomSynthetic Intelligence / Provide Chain Assault New analysis has discovered that synthetic intelligence (AI)-as-a-service suppliers reminiscent of Hugging Face are inclined to 2 vital dangers that might enable menace actors to escalate privileges, acquire cross-tenant entry to different clients’ fashions, and even take over the continual integration and steady deployment (CI/CD) pipelines. “Malicious … Read more