AI-as-a-Service Providers Vulnerable to PrivEsc and Cross-Tenant Attacks
![AI-as-a-Service Providers Vulnerable to PrivEsc and Cross-Tenant Attacks](https://www.ngtedu.co.in/heenachy/2024/04/AI-as-a-Service-Providers-Vulnerable-to-PrivEsc-and-Cross-Tenant-Attacks.png)
New research has found that artificial intelligence (AI)-as-a-service providers such as Hugging Face are susceptible to two critical risks that could allow threat actors to escalate privileges, gain cross-tenant access to other customers’ models, and even take over the continuous integration and continuous deployment (CI/CD) pipelines.
“Malicious models represent a major risk to AI systems,
The post “AI-as-a-Service Providers Vulnerable to PrivEsc and Cross-Tenant Attacks” appeared first on The Hacker News
Source:The Hacker News – [email protected] (The Hacker News)