ATLASAML.T0058
ATLAS index
AML.T0058
Publish Poisoned Models
Adversaries may publish a poisoned model to a public location such as a model registry or code repository. The poisoned model may be a novel model or a poisoned variant of an existing open source model. This model may be introduced to a victim system via AI Supply Chain Compromise.
- Framework
- MITRE ATLAS
- Maturity
- Realized
- Platforms
- Predictive AI, Generative AI, Agentic AI
- Release
- 2026.05
Overview
Adversaries may publish a poisoned model to a public location such as a model registry or code repository. The poisoned model may be a novel model or a poisoned variant of an existing open-source model. This model may be introduced to a victim system via AI Supply Chain Compromise.