Legit Discovers “AI Jacking” Vulnerability in Popular Hugging Face AI Platform

Our research revealed how attackers could leverage Hugging Face, the popular AI development and collaboration platform, to carry out an AI supply chain attack that could impact tens of thousands of developers and researchers. The attack, dubbed "AIJacking", is a variant of the infamous RepoJacking attack. The attack could lead to remote code execution and hijacking heavily used models and datasets from Hugging Face with over 100,000 downloads. The research techniques we employed, presented in this article, show how easy it is to exploit the vulnerability.

As we see growth in the adoption of generative AI, more and more attackers are targeting the AI supply chain to infiltrate organizations. OWASP covers these risks with the top 10 for LLM and the top 10 for ML security. AIJacking is an attack that relates to the following risks:

• ML06:Corrupted Packages

• LLM05: Supply Chain Vulnerabilities

The post Legit Discovers “AI Jacking” Vulnerability in Popular Hugging Face AI Platform appeared first on Security Boulevard.