AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

Practical and Flexible Backdoor Attack Against Deep Learning Models via Shell Code Injection

inforesearchPeer-Reviewed

securityresearch

Source: IEEE Xplore (Security & AI Journals)February 9, 2026

Summary

Researchers have developed a new backdoor attack method called shell code injection (SCI) that can implant malicious logic into deep learning models (neural networks trained on large datasets) without needing to poison the training data. The attack uses techniques inspired by nature, like camouflage, along with trigger verification and code packaging strategies to trick models into making wrong predictions, and it can adapt its attack targets dynamically using large language models (LLMs) to make it more flexible and harder to detect.

Classification

Attack Type

Model Poisoning

Attack SophisticationAdvanced

Impact (CIA+S)

integrity

AI Component TargetedModel

Related Issues

high

CVE-2024-37052: Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling

Similar attackNVD/CVE Database

info

Model Stability Defense Against Model Poisoning in Federated Learning

Original source: http://ieeexplore.ieee.org/document/11382040

First tracked: March 16, 2026 at 04:14 PM

Classified by LLM (prompt v3) · confidence: 92%