Techly NewsGet the app

Get the latest tech news

Malicious ML models found on Hugging Face Hub, the popular online repository for datasets and pre-trained models


Researchers have spotted two machine learning (ML) models containing malicious code on Hugging Face Hub, a popular online repository.

The Hugging Face Hub is an online platform where software developers and researchers can find, share and collaborate on ML models. While easy to use, pickle is considered an unsafe data format, as it allows Python code to be executed during ML model deserialization [aka ‘unpickling’],” Reversing Labs researchers noted. The Hugging Face security team has removed the malicious models and has improved Picklescan’s detection of broken pickle files.

Get the Android app

Or read this on r/technology

Read more on:

Photo of datasets

datasets

Photo of Malicious ML models

Malicious ML models

Photo of pre-trained models

pre-trained models

Related news:

News photo

Announcing the data.gov archive

News photo

Datasets from Data.gov Have Disappeared

News photo

Archivists Work To Identify and Save the Thousands of Datasets Disappearing From Data.gov

« The USB-C Apple Pencil is back on sale for $69
LIVE: The best early Amazon Presidents' Day deals for Android users — score major discounts on Samsung, Google, OnePlus, and beyond. »