AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

SLeak: Multi-Target Privacy Stealing Attack Against Split Learning

inforesearchPeer-Reviewed

securityresearch

Source: IEEE Xplore (Security & AI Journals)January 14, 2026

Summary

Split Learning (SL) is a distributed learning framework designed to preserve privacy while reducing computational load, but researchers discovered a new attack called SLeak that allows a server adversary to steal client data and models. The attack works by exploiting information in the smashed data (intermediate data passed between clients and server) and server model to build a substitute client that mimics the target client's behavior, without needing strong privacy assumptions or much auxiliary data. The study shows SLeak is more effective than previous attacks across different datasets and scenarios.

Classification

Attack Type

Data ExtractionModel TheftMembership Inference

Attack SophisticationAdvanced

Related Issues

high

Anthropic accuses Chinese AI labs of mining Claude as US debates AI chip exports

Similar attackTechCrunch

high

CVE-2026-24747: PyTorch is a Python package that provides tensor computation. Prior to version 2.10.0, a vulnerability in PyTorch's `wei

Similar attack

Monthly digest — independent AI security research

Original source: http://ieeexplore.ieee.org/document/11353031

First tracked: April 6, 2026 at 08:03 PM

Classified by LLM (prompt v3) · confidence: 85%