Techniqueresource-developmentpersistenceATLAS

AML.T0020Poison Training Data

What it is

Adversaries may attempt to poison datasets used by an AI model by modifying the underlying data or its labels. This allows the adversary to embed vulnerabilities in AI models trained on the data that may not be easily detectable. Data poisoning attacks may or may not require modifying the labels. The embedded vulnerability is activated at a later time by data samples with an [Insert Backdoor Trigger](/techniques/AML.T0043.004) Poisoned data can be introduced via [AI Supply Chain Compromise](/techniques/AML.T0010) or the data may be poisoned after the adversary gains [Initial Access](/tactics/AML.TA0004) to the system.

References

  1. https://atlas.mitre.org/techniques/AML.T0020

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

ATLAS
Publish Poisoned Datasets
ATLAS
AI Agent Tool Data Poisoning
ATLAS
AI Agent Tool Poisoning
ATLAS
Manipulate AI Model
ATLAS
Publish Poisoned Models
ATLAS tactic
AI Attack Staging
Sourced from MITRE ATLAS — Adversarial Threat Landscape for AI Systems. Curated by Adam Lundqvist, SQUR.