- ClamAV can now detect malicious code in AI fashions: “We’re releasing this functionality to the world. Without spending a dime. Along with its protection of conventional malware, ClamAV can now detect deserialization dangers in widespread mannequin file codecs similar to .pt and .pkl (in milliseconds, not minutes). This enhanced performance is obtainable immediately for everybody utilizing ClamAV,” Anderson and Fordyce wrote.
- ClamAV is targeted on AI danger in VirusTotal: “ClamAV is the one antivirus engine to detect malicious fashions in each Hugging Face and VirusTotal – a well-liked menace intelligence platform that can scan uploaded fashions.”
Prior Cisco-Hugging Face collaborations
An earlier tie-in between Cisco’s Basis AI and Hugging Face helped produce Cerberus, an AI provide chain safety evaluation mannequin. Cerberus analyzes fashions as they enter Hugging Face and shares the leads to standardized menace feeds that Cisco Safety merchandise can use to construct and implement entry insurance policies for the AI provide chain, based on a weblog from Nathan Chang, product supervisor with the Basis AI crew.
Cerberus expertise can be built-in with Cisco Safe Endpoint and Safe Electronic mail to allow automated blocking of recognized malicious recordsdata throughout learn/write/modify operations in addition to e mail attachments containing malicious AI Provide Chain Safety artifacts as attachments. Integration with Cisco Safe Entry Safe Net Gateway allows Cerberus to dam downloads of doubtless compromised AI fashions and block downloads of fashions from non-approved sources, based on Chang.
“Customers of Cisco Safe Entry can configure present entry to Hugging Face repositories, block entry to potential threats in AI fashions, block AI fashions with dangerous licenses, and implement compliance insurance policies on AI fashions that originate from delicate organizations or politically delicate areas,” Anderson and Fordyce wrote.
Cisco Basis AI
When Cisco launched Basis AI again in April, Jeetu Patel, govt vice chairman and chief product officer for Cisco, described it as a “a brand new crew of prime AI and safety consultants targeted on accelerating innovation for cyber safety groups.” Patel highlighted the discharge of the trade’s first open weight reasoning mannequin constructed particularly for safety:
“The Basis AI Safety mannequin is an 8-billion parameter, open weight LLM that’s designed from the bottom up for cybersecurity. The mannequin was pre-trained on fastidiously curated information units that seize the language, logic, and real-world data and workflows that safety professionals work with every single day,” Patel wrote in a weblog put up on the group’s introduction.
Prospects can use the mannequin as their very own AI safety base or combine it with their very own closed-source mannequin relying on their wants, Patel acknowledged on the time. “And that reasoning framework principally lets you take any base mannequin, then make that into an AI reasoning mannequin.”