Python Pickle Package

Malicious Machine Learning Model Attack Discovered on PyPI

A new campaign exploiting machine learning (ML) models via the Python Package Index (PyPI) has been observed by cybersecurity researchers. ReversingLabs said threat actors are using the Pickle file ...

SDxCentral

VU#253266: Keras 2 Lambda Layers Allow Arbitrary Code Injection in TensorFlow Models

General Advice for Framework Developers AI/ML-framework developers should avoid the use of naïve language-native serialization facilities (e.g., the Python pickle package has well-established security ...

CSOonline

Attackers hide malicious code in Hugging Face AI model Pickle files

The popular Python Pickle serialization format, which is common for distributing AI models, offers ways for attackers to inject malicious code that will be executed on computers when loading models ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results

Malicious Machine Learning Model Attack Discovered on PyPI

VU#253266: Keras 2 Lambda Layers Allow Arbitrary Code Injection in TensorFlow Models

Attackers hide malicious code in Hugging Face AI model Pickle files

Trending now