Unsafe ML Artifacts (d52b913b-808c-461d-8969-94cd5c9fe07b)
Adversaries may develop unsafe ML artifacts that when executed have a deleterious effect. The adversary can use this technique to establish persistent access to systems. These models may be introduced via a ML Supply Chain Compromise.
Serialization of models is a popular technique for model storage, transfer, and loading. However, this format without proper checking presents an opportunity for code execution.
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
User Execution (5e8e4108-beb6-479a-a617-323d425e5d03) | MITRE ATLAS Attack Pattern | Unsafe ML Artifacts (d52b913b-808c-461d-8969-94cd5c9fe07b) | MITRE ATLAS Attack Pattern | 1 |