. Poison Frogs! Targeted Clean-Label Poisoning Attacks on Neural Networks. NeurIPS’18, 2018.

Preprint PDF Code

. Exploring Adversarial Examples in Malware Detection. ALEC’18 (AAAI 2018 Fall Symposium), 2018.

Preprint PDF Venue

. When Does Machine Learning FAIL? Generalized Transferability for Evasion and Poisoning Attacks. USENIX’18, 2018.

PDF Code Slides Technical Report Presentation

. Too Big to FAIL: What You Need to Know Before Attacking a Machine Learning System. SPW’18, 2018.


. Summoning Demons: The Pursuit of Exploitable Bugs in Machine Learning. NeurIPS’16 Workshop on Reliable Machine Learning in the Wild, 2016.

Preprint PDF Slides Presentation Venue Media Coverage


  • osuciu AT umiacs DOT umd DOT edu
  • @osuciu on Keybase.
  • 3400 A.V. Williams Bldg, College Park, MD 20740, USA