Hosted on MSN

ECB raises interest rates for the first time in three years as Iran war fuels inflation

European Central Bank President Christine Lagarde addresses the media during a press conference in Frankfurt, Germany, Thursday 30 April 2026. A magnitude 9 earthquake hit – then the nuclear nightmare ...
The Hacker News

Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting

Google fixed a Vertex AI SDK flaw in v1.148.0 after Unit 42 showed bucket squatting could enable model hijacking and code ...
InfoWorld

Malicious Hugging Face model masquerading as OpenAI release hits 244K downloads

The repository reached the #1 trending position on Hugging Face within 18 hours, highlighting how public AI repositories are becoming a new software supply chain attack vector. A malicious Hugging ...
Dark Reading

Bad Memories Still Haunt AI Agents

Memory files can help artificial intelligence (AI) perform better, but researchers have found they are also a persistent trouble spot. AI memory files and context data help personalize requests and ...
GitHub

Security scanner detecting Python Pickle files performing suspicious actions.

https://huggingface.co/ykilcher/totally-harmless-model/resolve/main/pytorch_model.bin:archive/data.pkl: global import '__builtin__ eval' FOUND ----- SCAN SUMMARY ...
theregister

Popular Python libraries used in Hugging Face models subject to poisoned metadata attack

Vulnerabilities in popular AI and ML Python libraries used in Hugging Face models with tens of millions of downloads allow remote attackers to hide malicious code in metadata. The code then executes ...
CSOonline

Poisoned models in fake Alibaba SDKs show challenges of securing AI supply chains

Fake Alibaba Labs AI SDKs hosted on PyPI included PyTorch models with infostealer code inside. With support for detecting malicious code inside ML models lacking, expect the technique to spread.
Nature

X-ray Coronary Angiogram images and SYNTAX score to develop Machine-Learning algorithms for CHD Diagnosis

Coronary Heart Disease (CHD) is becoming a leading cause of death worldwide. To assess coronary artery narrowing or stenosis, doctors use coronary angiography, which is considered the gold-standard ...
Dark Reading

Open Source AI Models: Perfect Storm for Malicious Code, Vulnerabilities

Attackers are finding more and more ways to post malicious projects to Hugging Face and other repositories for open source artificial intelligence (AI) models, while dodging the sites' security checks ...
CSOonline

Attackers hide malicious code in Hugging Face AI model Pickle files

The popular Python Pickle serialization format, which is common for distributing AI models, offers ways for attackers to inject malicious code that will be executed on computers when loading models ...
Infosecurity-magazine.com

Malicious AI Models on Hugging Face Exploit Novel Attack Technique

Researchers at Reversing Labs have discovered two malicious machine learning (ML) models available on Hugging Face, the leading hub for sharing AI models and applications. While these models contain ...
Hosted on MSN

10 Python Functions That Will Simplify Your Life

New Objects Detected in Space Behave a Lot Like 'Oumuamua Researchers have calculated the number of partners one would need before committing. How Ural Flight 178 Crashed Into a Field Seconds After ...