- ClamAV can now detect malicious code in AI fashions: “We’re releasing this functionality to the world. Without cost. Along with its protection of conventional malware, ClamAV can now detect deserialization dangers in widespread mannequin file codecs similar to .pt and .pkl (in milliseconds, not minutes). This enhanced performance is obtainable right this moment for everybody utilizing ClamAV,” Anderson and Fordyce wrote.
- ClamAV is targeted on AI danger in VirusTotal: “ClamAV is the one antivirus engine to detect malicious fashions in each Hugging Face and VirusTotal – a well-liked risk intelligence platform that may scan uploaded fashions.”
Prior Cisco-Hugging Face collaborations
An earlier tie-in between Cisco’s Basis AI and Hugging Face helped produce Cerberus, an AI provide chain safety evaluation mannequin. Cerberus analyzes fashions as they enter Hugging Face and shares the leads to standardized risk feeds that Cisco Safety merchandise can use to construct and implement entry insurance policies for the AI provide chain, in response to a blog from Nathan Chang, product supervisor with the Basis AI staff.
Cerberus expertise can also be built-in with Cisco Safe Endpoint and Safe E mail to allow computerized blocking of identified malicious information throughout learn/write/modify operations in addition to e-mail attachments containing malicious AI Provide Chain Safety artifacts as attachments. Integration with Cisco Safe Entry Safe Internet Gateway permits Cerberus to dam downloads of probably compromised AI fashions and block downloads of fashions from non-approved sources, in response to Chang.
“Customers of Cisco Secure Access can configure present entry to Hugging Face repositories, block entry to potential threats in AI fashions, block AI fashions with dangerous licenses, and implement compliance insurance policies on AI fashions that originate from delicate organizations or politically delicate areas,” Anderson and Fordyce wrote.
Cisco Basis AI
When Cisco launched Basis AI again in April, Jeetu Patel, government vp and chief product officer for Cisco, described it as a “a brand new staff of prime AI and safety specialists targeted on accelerating innovation for cyber safety groups.” Patel highlighted the discharge of the business’s first open weight reasoning mannequin constructed particularly for safety:
“The Basis AI Safety mannequin is an 8-billion parameter, open weight LLM that’s designed from the bottom up for cybersecurity. The mannequin was pre-trained on rigorously curated information units that seize the language, logic, and real-world information and workflows that safety professionals work with day by day,” Patel wrote in a blog post on the group’s introduction.
Prospects can use the mannequin as their very own AI safety base or combine it with their very own closed-source mannequin relying on their wants, Patel acknowledged on the time. “And that reasoning framework mainly lets you take any base mannequin, then make that into an AI reasoning mannequin.”
