CrossTenant

‘Hugging Face’ AI fashions, buyer knowledge in danger to cross-tenant assaults – Model Slux

by
‘Hugging Face’ AI fashions, buyer knowledge in danger to cross-tenant assaults – Model Slux

In an eye-opening piece of menace intelligence, the cloud-focused Wiz analysis crew partnered with fast-growing AI-as-a-service supplier Hugging Face to uncover flawed, malicious fashions utilizing the “pickle format” that might put the info and synthetic intelligence fashions of hundreds of Hugging Face clients in danger. An April 4 weblog submit by Wiz researchers mentioned potential … Read more

AI-as-a-Service Suppliers Susceptible to PrivEsc and Cross-Tenant Assaults – Model Slux

by
AI-as-a-Service Suppliers Susceptible to PrivEsc and Cross-Tenant Assaults – Model Slux

Apr 05, 2024NewsroomSynthetic Intelligence / Provide Chain Assault New analysis has discovered that synthetic intelligence (AI)-as-a-service suppliers akin to Hugging Face are vulnerable to 2 essential dangers that might permit menace actors to escalate privileges, achieve cross-tenant entry to different prospects’ fashions, and even take over the continual integration and steady deployment (CI/CD) pipelines. “Malicious … Read more

x