Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Model Namespace Reuse reverse-shell deployment attack

Technical Analysis
First reported
Last updated
Happening score
H score 16
1 unique sources, 1 articles

Summary

Hide ▲

Researchers demonstrated Model Namespace Reuse, an AI supply chain attack that can turn stale model references into malicious deployments and arbitrary code execution. The technique matters because it can pivot from a trusted model fetch into access on the endpoint environment hosting the deployment. The exposure spans Vertex AI, Azure AI Foundry, and open source projects that reference models by Author/ModelName alone.

Related Happenings

CL-STA-1087 Southeast Asian military intelligence-collection campaign

Campaign
First: 13.03.2026 19:33 Last: 13.03.2026 19:33 Sources 1

About this happening: A **suspected China-based** espionage operation tracked as **CL-STA-1087** is targeting **Southeast Asian military organizations**, creating a sustained intelligence-collection ri...

Open Happening

CL-UNK-1068 Asia critical-infrastructure cyberespionage campaign

Campaign
First: 09.03.2026 14:05 Last: 09.03.2026 14:05 Sources 1

About this happening: The **CL-UNK-1068** espionage campaign is active across **Asia**, putting **aviation, energy, government, law enforcement, pharmaceuticals, technology, and telecommunications** or...

Open Happening

North Korea fake job-recruitment campaign using malicious Next.js repositories

Campaign
First: 25.02.2026 18:42 Last: 25.02.2026 18:42 Sources 1

About this happening: The **North Korea**-linked campaign now targets **developers** with **malicious Next.js repositories**, creating **remote code execution** and a persistent **C2** channel on infec...

Open Happening

Publicly exposed training and demo apps in cloud environments are being abused at scale

Target Trend
First: 11.02.2026 13:30 Last: 11.02.2026 13:30 Sources 1

About this happening: Publicly exposed **training and demo applications** are showing up at scale in **AWS, Azure, and GCP**, turning lab systems into real cloud footholds. Researchers verified **nearl...

Open Happening

Visual Studio Code-delivered JavaScript backdoor

Malware Activity
First: 22.01.2026 00:00 Last: 22.01.2026 00:00 Sources 1

About this happening: **North Korean threat actors** are using **malicious Next.js repositories** in a **fake job-recruitment campaign** to trigger **remote code execution (RCE)** on **developer system...

Open Happening

Timeline

  1. 04.09.2025 15:59 2 articles · 8mo ago

    Palo Alto Networks demonstrates Model Namespace Reuse against Vertex AI and Azure AI Foundry

    Technical Analysis Update

    Palo Alto Networks demonstrated Model Namespace Reuse, an AI supply chain technique that abuses deleted or transferred Hugging Face-style namespaces, and showed that a malicious model could trigger a reverse shell during deployment on Google’s Vertex AI Model Garden and Microsoft’s Azure AI Foundry. The researchers said the deployment host exposed the endpoint environment, and they also identified thousands of susceptible open source repositories that reference models as Author/ModelName.

    Show sources
    Open in new tab