Tag: ml
-
Neue Schwachstellen in Machine-Learning-Systemen – JFrog-Analyse zeigt Risiken auf
by
in SecurityNewsUm Risiken zu minimieren, empfiehlt das JFrog-Team, keine nicht-vertrauenswürdigen ML-Modelle zu laden auch nicht in scheinbar sicheren Formaten wie Safetensors. Unternehmen sollten ihre ML-Nutzer für die Gefahren sensibilisieren und Sicherheitsrichtlinien entsprechend anpassen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/neue-schwachstellen-in-machine-learning-systemen-jfrog-analyse-zeigt-risiken-auf/a39362/
-
Die 10 häufigsten LLM-Schwachstellen
by
in SecurityNews
Tags: access, ai, api, application-security, awareness, breach, cloud, control, cyberattack, data, detection, dos, encryption, injection, least-privilege, LLM, ml, monitoring, privacy, RedTeam, remote-code-execution, risk, service, tool, update, vulnerability, zero-trust -
ML clients, ‘safe’ model formats exploitable through open-source AI vulnerabilities
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/ml-clients-safe-model-formats-exploitable-through-open-source-ai-vulnerabilities
-
AWS launches tools to tackle evolving cloud security threats
by
in SecurityNewsThe increasing sophistication and scale of cyber threats pose a growing challenge for enterprises managing complex cloud environments. Security teams often face overwhelming volumes of alerts, fragmented workflows, and limited tools to identify and respond to attack patterns spanning multiple events.Amazon Web Services (AWS) is addressing these challenges with two significant updates to its cloud…
-
JFrog fördert sichere KI-Entwicklung mit Integration von Databricks MLflow
by
in SecurityNewsDie neue JFrog Artifactory-Integration bietet Entwicklern und Data Scientists eine Open Source Software-Lösung, um die Entwicklung von ML-Modellen zu … First seen on infopoint-security.de Jump to article: www.infopoint-security.de/jfrog-foerdert-sichere-ki-entwicklung-mit-integration-von-databricks-mlflow/a37220/
-
JFrog übernimmt Qwak AI Rationalisierung von KI- & ML-Modellen
by
in SecurityNewsAls Teil der JFrog-Plattform wird die Qwak-Technologie eine unkomplizierte und problemlose Überführung von Modellen in die Produktion bieten, basiert … First seen on infopoint-security.de Jump to article: www.infopoint-security.de/jfrog-uebernimmt-qwak-ai-rationalisierung-von-ki-ml-modellen/a37667/
-
It’s Near-Unanimous: AI, ML Make the SOC Better
by
in SecurityNewsEfficiency is the name of the game for the security operations center, and 91% of cybersecurity pros say artificial intelligence and machine learning are winning that game. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/survey-report-ai-ml-make-soc-better
-
Kritische Schwachstellen in PyTorch, TensorFlow und ONNX gefährden maschinelles Lernen
by
in SecurityNewsDie dokumentierten Schwachstellen betreffen die wichtigsten ML-Plattformen und machen deutlich, wie böswillige Akteure durch gezielte Angriffstechniken die Vertraulichkeit, Integrität und Verfügbarkeit produktiver ML-Systeme gefährden könnten. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/kritische-schwachstellen-in-pytorch-tensorflow-und-onnx-gefaehrden-maschinelles-lernen/a38926/
-
Sicherheitslücken in ML-Toolkits: Zahlreiche Tools betroffen
by
in SecurityNewsNeue Schwachstellen in ML-Toolkits: Sicherheitslücken erhöhen das Risiko von Angriffen auf ML-Systeme durch KI-Hacker. First seen on tarnkappe.info Jump to article: tarnkappe.info/artikel/it-sicherheit/sicherheitsluecken-in-ml-toolkits-zahlreiche-tools-betroffen-304052.html
-
JFrog-Analyse zur Gefährdung Maschinellen Lernens: Kritische Schwachstellen in ML-Frameworks entdeckt
by
in SecurityNewsFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/jfrog-analyse-gefaehrdung-maschinelles-lernen-kritisch-schwachstellen-ml-frameworks-entdeckung
-
Security Flaws in Popular ML Toolkits Enable Server Hijacks, Privilege Escalation
by
in SecurityNewsCybersecurity researchers have uncovered nearly two dozen security flaws spanning 15 different machine learning (ML) related open-source projects.These comprise vulnerabilities discovered both on the server- and client-side, software supply chain security firm JFrog said in an analysis published last week.The server-side weaknesses “allow attackers to hijack important servers in the First seen on thehackernews.com Jump…
-
AI Recruitment Tools Prone to Bias, Privacy Issues
by
in SecurityNewsML, NLP Tools Collect More Personal Information Than Required, UK Regulator Says. Artificial intelligence tools currently used by organizations in the United Kingdom to screen job applicants pose privacy risks and are susceptible to biasness and accuracy issues, the U.K. Information Commissioner’s Office found. The ICO focused on machine learning and natural language processing. First…
-
Researchers Uncover Vulnerabilities in Open-Source AI and ML Models
by
in SecurityNewsA little over three dozen security vulnerabilities have been disclosed in various open-source artificial intelligence (AI) and machine learning (ML) m… First seen on thehackernews.com Jump to article: thehackernews.com/2024/10/researchers-uncover-vulnerabilities-in.html
-
Open-Source AI, ML Tools Plagued With Vulnerabilities
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/brief/open-source-ai-ml-tools-plagued-with-vulnerabilities
-
Exploring the Transformative Potential of AI in Cybersecurity
By continuously learning from new data, ML models can adapt to evolving threat landscapes, making them invaluable in identifying zero-day vulnerabilit… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/exploring-the-transformative-potential-of-ai-in-cybersecurity/
-
AI Hype Drives Demand For ML SecOps Skills
by
in SecurityNewsCompanies are putting AI in just about all of their products, which opens up new security holes. LLM SecOps and ML SecOps are becoming must-have skill… First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-careers/ai-hype-drives-demand-ml-secops-skills
-
OT Risk Management Firm DeNexus Raises $17.5 Million
by
in SecurityNewsDeNexus offers an AI and ML-driven data analytics platform that focuses on managing the cyber risk to the underserved operational technology of critic… First seen on securityweek.com Jump to article: www.securityweek.com/ot-risk-management-firm-denexus-raises-17-5-million/
-
Cybercriminals Are Targeting AI Conversational Platforms
by
in SecurityNewsResecurity reports a rise in attacks on AI Conversational platforms, targeting chatbots that use NLP and ML to enable automated, human-like interactio… First seen on securityaffairs.com Jump to article: securityaffairs.com/169580/security/cybercriminals-are-targeting-ai-conversational-platforms.html
-
Auditing Gradio 5, Hugging Face’s ML GUI framework
by
in SecurityNewsThis is a joint post with the Hugging Face Gradio team; read their announcement here! You can find the full report with all of the detailed findings f… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/auditing-gradio-5-hugging-faces-ml-gui-framework/
-
USENIX NSDI ’24 Credence: Augmenting Datacenter Switch Buffer Sharing with ML Predictions
by
in SecurityNewsAuthors/Presenters:Vamsi Addanki, Maciej Pacut, Stefan Schmid Our sincere thanks to USENIX, and the Presenters & Authors for publishing their supe… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/10/usenix-nsdi-24-credence-augmenting-datacenter-switch-buffer-sharing-with-ml-predictions/
-
Hackers Attacking AI Agents To Hijacking Customer Sessions
by
in SecurityNewsConversational AI platforms, powered by chatbots, are witnessing a surge in malicious attacks, which leverage NLP and ML are increasingly being used b… First seen on gbhackers.com Jump to article: gbhackers.com/hackers-hijack-ai-customer-sessions/
-
Google Chrome Switches to ML-KEM for Post-Quantum Cryptography Defense
by
in SecurityNewsGoogle has announced that it will be switching from KYBER to ML-KEM in its Chrome web browser as part of its ongoing efforts to defend against the ris… First seen on thehackernews.com Jump to article: thehackernews.com/2024/09/google-chrome-switches-to-ml-kem-for.html
-
Cybersecurity Snapshot: Critical Infrastructure Orgs Found Vulnerable to Basic Hacks, While New MITRE Tool Uses ML to Predict Attack Chains
by
in SecurityNewsReport finds that many critical infrastructure networks can be breached using simple attacks. Plus, a new MITRE Engenuity tool uses machine learning t… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/09/cybersecurity-snapshot-critical-infrastructure-orgs-found-vulnerable-to-basic-hacks-while-new-mitre-tool-uses-ml-to-predict-attack-chains/
-
SC Award Winners 2024 Onyxia Cyber Best AI,ML Data Analytics Security Solution
by
in SecurityNewsFirst seen on scmagazine.com Jump to article: www.scmagazine.com/news/sc-award-winners-2024-onyxia-cyber-best-aiml-data-analytics-security-solution
-
Chrome switching to NIST-approved ML-KEM quantum encryption
by
in SecurityNewsGoogle announced updates in the post-quantum cryptographic key encapsulation mechanism used in the Chrome browser, specifically, the swap of Kyber use… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/chrome-switching-to-nist-approved-ml-kem-quantum-encryption/
-
Nvidia AI security architect discusses top threats to LLMs
Richard Harang, Nvidia’s principal AI and ML security architect, said two of the biggest pain points for LLMs right now are insecure plugins and indir… First seen on techtarget.com Jump to article: www.techtarget.com/searchsecurity/news/366599855/Nvidia-AI-security-architect-discusses-top-threats-to-LLMs