2025-02-10 11:11:46.AIbase.15.2k
Hackers Upload Malicious AI Models on HuggingFace Using 'Corrupted' Pickle Files
Recently, cybersecurity researchers discovered two malicious machine learning models that were uploaded quietly to the renowned machine learning platform HuggingFace. These models utilized a novel technique, successfully bypassing security detection through 'corrupted' pickle files, raising concerns. Karlo Zanki, a researcher at ReversingLabs, pointed out that the beginning of the pickle files extracted from these PyTorch format archives suggests that