#pickle

[ follow ]
#pytorch #picklescan #vulnerabilities #supply-chain #model-serialization #supply-chain-security #ml-security
Information security
fromThe Hacker News
1 week ago

Picklescan Bugs Allow Malicious PyTorch Models to Evade Scans and Execute Code

Picklescan contains critical vulnerabilities that allow attackers to bypass detection and execute arbitrary code via malicious PyTorch models, enabling supply-chain attacks.
fromZero Day Initiative
2 months ago

Zero Day Initiative - CVE-2025-23298: Getting Remote Code Execution in NVIDIA Merlin

For Developers: * Never use pickle for untrusted data: This cannot be emphasized enough. * Never assume checkpoint files are safe: Checkpoint deserialization is vulnerable to supply chain attacks. * Always use weights_only=True when using PyTorch's load functions. * Restrict to trusted classes: Restrict deserialization to only trusted classes. * Implement defense in depth: Don't rely on a single security measure. * Consider alternative formats: Safetensors, ONNX, or other secure serialization formats should all be considered.
Information security
NYC startup
fromBusiness Insider
6 months ago

Meet the women who make thousands a month renting their clothes

Women are making significant income by renting clothes on the app Pickle, using earnings for personal finances and reinvestment.
[ Load more ]