Model Extraction/Stealing — Cloning a model via API queries Supply Chain Attacks — Malicious models/weights on platforms like Hugging Face MCP Server Exploitation — Tool poisoning, resource theft, ...