The hidden dangers of loading open-source AI models (ARBITRARY CODE EXPLOIT!)
#huggingface #pickle #exploit
Did you know that something as simple as loading a model can execute arbitrary code on your machine?
Try the model: https://huggingface.co/ykilcher/totally-harmless-model
Get the code: https://github.com/yk/patch-torch-save
Sponsor: Weights & Biases
Go here: https://wandb.me/yannic
OUTLINE:
0:00 - Introduction
1:10 - Sponsor: Weights & Biases
3:20 - How Hugging Face models are loaded
5:30 - From PyTorch to pickle
7:10 - Understanding how pickle saves data
13:00 - Executing arbitrary code
15:05 - The final code
17:25 - How can you protect yourself?
Links:
Homepage: https://ykilcher.com
Merch: https://ykilcher.com/merch
YouTube: https://www.youtube.com/c/yannickilcher
Twitter: https://twitter.com/ykilcher
Discord: https://ykilcher.com/discord
LinkedIn: https://www.linkedin.com/in/ykilcher
If you want to support me, the best thing to do is to share out the content :)
If you want to support me financially (completely optional and voluntary, but a lot of people have asked for this):
SubscribeStar: https://www.subscribestar.com/yannickilcher
Patreon: https://www.patreon.com/yannickilcher
Bitcoin (BTC): bc1q49lsw3q325tr58ygf8sudx2dqfguclvngvy2cq
Ethereum (ETH): 0x7ad3513E3B8f66799f507Aa7874b1B0eBC7F85e2
Litecoin (LTC): LQW2TRyKYetVC8WjFkhpPhtpbDM4Vw7r9m
Monero (XMR): 4ACL8AGrEo5hAir8A9CeVrW8pEauWvnp1WnSDZxW7tziCDLhZAGsgzhRQABDnFy8yuM9fWJDviJPHKRjV4FWt19CJZN9D4n
-
1:21:23
ykilcher
10 months agoOpen Assistant Inference Backend Development (Hands-On Coding)
20 -
27:50
ykilcher
1 year agoThe New AI Model Licenses have a Legal Loophole (OpenRAIL-M of BLOOM, Stable Diffusion, etc.)
491 -
2:17
AlphaOneYoutube
1 year agoFree to use Alpha One AI-Bot: A Game Changer for Binary Options
12 -
10:48
Louis Rossmann
11 months ago $0.04 earnedAndroid's slow creep towards being closed source continues on - open source elements deprecated
4463 -
0:53
AndrewOnizuka
1 year agoL8 Why Logic-Based AI is Essential for Trustworthy Software Verification
1 -
2:36:21
afeli
1 year agoWeb3 Bounty Hunting, Smart Contract Auditing, Computer Science and the Future of DeFi - 100proof
1121 -
5:41:23
jaredthecoder
9 months agoBuilding "10x-Hacker-Bot" | Using Code Llama to Detect Website Vulnerabilities
5 -
8:57
Son of a Tech
11 months agoHive vs. OpenAI: Which Offers Better Privacy for AI Model Training? - 259
5 -
14:48
CryptoCat
2 years ago10: Bypassing Stack Canaries (leak + write) - Buffer Overflows - Intro to Binary Exploitation (Pwn)
30 -
9:49
GeneralFinance
9 months agoAI Update: Meta Launches Insane Open Source AI Model! (Must See!)
6