Model Hijacking Attack

Model hijacking attacks exploit vulnerabilities in machine learning models to force them to perform unintended tasks, raising significant security and accountability concerns. Current research focuses on extending these attacks to various learning paradigms (e.g., federated learning) and modalities (e.g., image classification to NLP), often employing encoder-decoder architectures or distance measures in latent space to achieve stealthy manipulation. The ability to subtly redirect model functionality highlights critical weaknesses in existing ML systems and underscores the need for robust defenses to ensure the trustworthiness and ethical deployment of AI.

Papers

August 4, 2024

Model Hijacking Attack in Federated Learning
Zheng Li, Siyuan Wu, Ruichuan Chen, Paarijaat Aditya, Istemi Ekin Akkus, Manohar Vanga, Min Zhang, Hao Li, Yang Zhang
Backdoor Sample Hijacking Task Model Hijacking Attack

July 31, 2024

Vera Verto: Multimodal Hijacking Attack
Minxing Zhang, Ahmed Salem, Michael Backes, Yang Zhang
Modal Attack Multimodal Attack Hijacking Task Model Hijacking Attack

June 3, 2024

Model for Peanuts: Hijacking ML Models without Training Access is Possible
Mahmoud Ghorbel, Halima Bouzidi, Ioan Marius Bilasco, Ihsen Alouani
Training Data Machine Learning Model Full Model Hijacking Task Model Hijacking Attack

May 12, 2023

Two-in-One: A Model Hijacking Attack Against Text Generation Models
Wai Man Si, Michael Backes, Yang Zhang, Ahmed Salem
Text Generation Model Text Classification Task Single All in One Model Model Hijacking Attack

March 21, 2023

STDLens: Model Hijacking-Resilient Federated Learning for Object Detection
Ka-Ho Chow, Ling Liu, Wenqi Wei, Fatih Ilhan, Yanzhao Wu
Deep Learning Based Object Model Hijacking Attack

November 8, 2021

Get a Model! Model Hijacking Attack Against Machine Learning Models
Ahmed Salem, Michael Backes, Yang Zhang
Machine Learning Model Full Model Training Time Attack Model Hijacking Attack