News

CSOonline5mon
Attackers hide malicious code in Hugging Face AI model Pickle files
The popular Python Pickle serialization format, which is common for distributing AI models, offers ways for attackers to inject malicious code that will be executed on computers when loading ...
Dark Reading1y
'Sleepy Pickle' Exploit Subtly Poisons ML Models - Dark Reading
To avoid this kind of risk, organizations can focus on only using ML models in the safer file format, Safetensors. Unlike Pickle, Safetensors deals only with tensor data, not Python objects ...
Infosecurity-magazine.com2mon
Malicious Machine Learning Model Attack Discovered on PyPI
ReversingLabs said threat actors are using the Pickle file format to conceal malware inside seemingly legitimate AI-related software packages. In this recent incident, attackers published three ...
GIGAZINE2y
``Stable-Diffusion-Pickle-Scanner-GUI'' that can check whether malware ...
Stable-Diffusion-Pickle-Scanner-GUI is a tool that can run `` Python Pickle Malware Scanner ' ... (file size 23.8MB), and the Archived version is in ZIP format (file size 23.3MB).