Isolation or Hallucination? Hacking AI Infrastructure Providers for Fun and Weights
Unknown
Black Hat USA 2024 · Day 1 · Briefing
In an era increasingly defined by artificial intelligence, the security of the underlying infrastructure that powers these complex systems is paramount. This talk, "Isolation or Hallucination? Hacking AI Infrastructure Providers for Fun and Weights," delivered by Wiz Research security experts Hillai Ben-Sasson and Sagi Tzadick, unveils critical vulnerabilities within leading AI as a Service (AIaaS) platforms. The researchers demonstrate how seemingly innocuous AI model files and training procedures can be weaponized to achieve **Remote Code Execution (RCE)**, compromise sensitive data, and expose the intellectual property of millions of users.