ML Model Repositories: The Next Big Supply Chain Attack Target

Machine-learning model platforms like Hugging Face are suspectible to the same kind of attacks that threat actors have executed successfully for years via npm, PyPI, and other open source repos.

darkreading – ​Read More