In Episode 24 of Data Revolution Minute, Pablo considers how pre-built applications that are free and open can also contain malicious code. He challenges whether or not open source is truly secure.
This episode of Data Revolution Minute is sponsored by Community Summit North America, the largest independent gathering of the Microsoft Business Applications ecosystem taking place October 10-13 at the Gaylord Palms in Orlando, Florida. With 500+ Dynamics 365 & Power Platform sessions and more than 300 speakers, this event is a must-attend for Microsoft customers. Visit summitna.com for more details.
00:15 — This episode is sponsored by Community Summit North America, which will take place October 10-13 in Orlando, Florida.
00:45 — There has been some recent noise around the platform Hugging Face, as its portal has been found to contain malicious code. Hugging Face is an open-source public hub that enables users to develop machine learning and AI applications.
01:56 — Because this platform is open source, it opens up the potential for malicious development to occur within it. On Hugging Face, there is a model that, when users download their NLP projects, will open a website and claim there’s ransomware on users’ machines.
02:35 — This raises the question of whether or not open source is secure. Because these pre-built applications are open and free, there can be anything there — including malicious code.