Register
Promote YOUR BRAND

MYSEC.TV

Home   /   RESOURCES   /   MYSEC.TV   / AI Security – Backdoors and Poisoned Data

AI Security – Backdoors and Poisoned Data

Tech & Sec Weekly
SHARE:

IN THIS VIDEO

In this interview at Black Hat Asia 2024, we spoke with Adrian Wood and Mary Walker, security engineers from Dropbox, about the critical issues surrounding AI security, backdoors, and malware.

Adrian and Mary explained that many users rely on pre-existing machine learning (ML) models from public repositories rather than creating their own. This introduces vulnerabilities similar to those found in open-source software. Using in-house data requires careful handling to avoid bias and unintended consequences, while third-party models can be compromised.

They emphasized that downloading and running models from the internet can introduce malware. Attackers can backdoor models to alter their functions or insert malicious code, posing significant threats, especially in sensitive industries.

Adrian and Mary also stressed the importance of understanding the ML environment, ensuring proper logging, and having incident response plans in place. Companies should prepare by conducting tabletop exercises and securing their supply chains.

For more educational information on machine learning: https://gist.github.com/5stars217/236…

Dropbox, Security Engineer – Adrian Wood, aka threlfall, currently works for Dropbox on their red team. He has worked as a red team consultant for WHITEHACK, a company he founded, and later as a lead engineer for an offensive security research team at a US bank. His research recently has been in supply chain attacks on CI/CD and ML systems, which includes maintaining the offsec ml playbook and has presented on these topics at DEFCON 30, 31, the DEFCON AI village, Cackalackycon and more.

Dropbox, Security Engineer – Mary Walker, aka mairebear, currently works for Dropbox on their threat intelligence team; she splits her time at work between research (primarily focused on ML) and building tooling to help her team move faster. She’s previously worked at a major online retailer on their malware analysis and forensics team, a US bank on their red team, and an energy company in their SOC. Her background is primarily in DFIR and malware analysis, with a keen interest in production environments.

Recorded 18th April 2024, 4.30pm, BlackHat Asia 2024, Singapore
#BHAsia #mysecuritytv #blackhat

OTHER VIDEOS IN THIS SERIES

space-380325
Astronaut Col. Mike Bloomfield speaking at Avalon Australia International Airshow 2025
March 28, 2025
We speak with astronaut Col. Mike Bloomfield (STS-86, 97, & 110) who took to the stage with Australian astronaut Katherine Bennell-Pegg to present and congratulate four Australian secondary students and STEM teacher selected for the prestigious Endeavour scholarship. Watch Now
space-2803
Newly appointed Space Industry CEO calls for National Space Taskforce
March 28, 2025
The Space Industry Association of Australia (SIAA) newly appointed chief executive officer Dan Lloyd outlines the 2025-2026 Pre-Budget Submission made by SIAA and the call for an Australian National Space Taskforce to monitor and respond to national and global space activities and articulate a structured national approach to space. Watch Now
space-2501
Connecting & Protecting in the Age of AI
March 25, 2025
In today’s security world, there are numerous security solutions that can limit access to company data and IT resources and lock down access. However, when it comes to using AI apps and their back-end models, Watch Now
space-13-03
Maritime Domain Awareness Series - Securing our seas: Innovations and challenges
March 13, 2025
This session focused on gaining insights in the latest developments and capabilities for establishing and maintaining situational awareness across the maritime domain, with a focus on security, sustainability and space-earth observation. Watch Now

MySecurity MarketPlace, powered by MySecurity Media is a dedicated marketplace connecting industry and enterprise professionals to the latest events, education, technology and media platforms across a global domain.

LATEST EVENT LISTED

Space Symposium 2025 MP
Space Symposium 2025
IPRAAC_2025_SocialTile_700x480
Indo-Pacific Robotics, Autonomy, AI and Cyber Conference 2025
Connecting and protecting in the age of AI MP
Connecting & Protecting in the Age of AI - Security & Risk Professional Insight Series 2025

CONNECT WITH US

X-twitter Facebook-f Linkedin-in Instagram Youtube Podcast Google-play Apple

CONTACT US

© My Security Media. All Right Reserved 2019.

Privacy Policy | Terms & Conditions | Competition T&Cs