This talk will present vulnerabilities and exploitation against real AI systems. In the past year, the speaker’s team has found various implementation vulnerabilities, logic bugs and broken assumptions in real AI systems, including cloud-based vision services from several well-known vendors. The potential risks range from misclassifications, to data and model leaks, and even a whole system compromise.

Pre-Requisites: Basic knowledge of software vulnerabilities.