Trending...
- Kevin Francis Design Introduces CHROMA, a Collection of Saturated Solid Color Wool Rugs - 156
- California: While Trump drags his feet, Governor Newsom delivers $46M to help address the federally managed water crisis at the border
- Mike Williams Golf Center Now Open at Georgia's Lanier Islands Resort
LOS ANGELES - Californer -- The integration of AI into digital pathology through general-purpose foundation models promises to significantly enhance various tasks, such as cancer detection and subtyping. However, these powerful AI systems also introduce severe vulnerabilities, rendering them susceptible to adversarial attacks. Researchers at the University of California, Los Angeles (UCLA) have introduced Universal and Transferable Adversarial Perturbations (UTAP) to investigate these potential threats and shed light on defense mechanisms against such adversarial attacks.
UTAP utilizes an adaptive optimization process to iteratively craft a subtle microscopic noise pattern. When this fixed noise pattern is added to a pathology image, for example, corresponding to a microscopic image of a biopsied tissue section, it systematically disrupts the feature representation capabilities of pathology foundation models by minimizing the similarity between the feature representations of the original and perturbed images. This adversarial methodology fundamentally hampers the representational power of AI models.
More on The Californer
UCLA research demonstrated two key capabilities of UTAP: universality and transferability. The optimized microscopic perturbation of the attack can be applied across diverse sets of tissue images, independent of the training dataset, confirming its universality. Furthermore, the perturbation degrades the performance of various external pathology foundation models without prior exposure, demonstrating extensive transferability to new AI models never seen before. Quantitative evaluations revealed that applying the UTAP microscopic perturbation to various tissue images resulted in significant reductions in accuracy across seven state-of-the-art pathology foundation models.
Standard defense mechanisms, such as the application of spatial low-pass filters to neutralize high-frequency adversarial noise, were proven insufficient. UCLA researchers demonstrated that an adaptive adversary could systematically bypass these filtering defenses by incorporating similar filters into the forward pass during perturbation training.
More on The Californer
To secure the clinical utility of pathology foundation models against these sophisticated threats, the research team proposes a closed-loop methodology comprising detection, source identification, and reconfirmation. This framework utilizes a dedicated attack-detection network as a first line of defense, followed by protocolized rescanning of physical tissue slides to identify/isolate the source of the attack. Ultimately, the framework relies on a human expert in the loop to assess the morphological data and reject hallucinated diagnostic outputs, ensuring patient safety.
The rapid creation of a universal and transferable perturbation pattern, in less than 15 minutes of training time, carries significant implications for the clinical deployment and safety of AI in digital pathology and optical microscopy systems. Consequently, to support the safer development and deployment of pathology foundation models, it is essential to comprehensively study these threats and develop robust defenses.
The study was supervised by Prof. Aydogan Ozcan of UCLA. The other authors of this work include Yuntian Wang, Xilin Yang, Che-Yung Shen, Shuhang Dong, and Nir Pillar.
Article: https://doi.org/10.1038/s41377-026-02347-w
UTAP utilizes an adaptive optimization process to iteratively craft a subtle microscopic noise pattern. When this fixed noise pattern is added to a pathology image, for example, corresponding to a microscopic image of a biopsied tissue section, it systematically disrupts the feature representation capabilities of pathology foundation models by minimizing the similarity between the feature representations of the original and perturbed images. This adversarial methodology fundamentally hampers the representational power of AI models.
More on The Californer
- City of Long Beach to Unveil Conceptual Design for New LGBTQ+ Cultural District
- California: Governor Newsom demands records from Trump's DOJ about politically motivated investigation
- Eco-Guest House Moving Up: The Only Fully Accessible Hotel in the Western Highlands of Guatemala
- Divine Feminine Publishing Announces Open Call for Zero Gravity: Cozy Tales from Outer Space
- Boston Industrial Solutions' Natron® 717N Series UV LED Ink Receives CPSIA Certification
UCLA research demonstrated two key capabilities of UTAP: universality and transferability. The optimized microscopic perturbation of the attack can be applied across diverse sets of tissue images, independent of the training dataset, confirming its universality. Furthermore, the perturbation degrades the performance of various external pathology foundation models without prior exposure, demonstrating extensive transferability to new AI models never seen before. Quantitative evaluations revealed that applying the UTAP microscopic perturbation to various tissue images resulted in significant reductions in accuracy across seven state-of-the-art pathology foundation models.
Standard defense mechanisms, such as the application of spatial low-pass filters to neutralize high-frequency adversarial noise, were proven insufficient. UCLA researchers demonstrated that an adaptive adversary could systematically bypass these filtering defenses by incorporating similar filters into the forward pass during perturbation training.
More on The Californer
- purelyIV Expands Mobile IV Therapy to Jackson, MI and Launches PlaqueX® IV Therapy
- Leimert Juneteenth Community Celebration Set for Friday, June 19, in Leimert Park Village
- UK Financial Ltd Publishes Maya Preferred Public Proof Package and CoinMarketCap Supply Verification Evidence
- Queer Author Miles Whitney Launches Debut Novel "Midlife Musical" This Pride Month
- Retailers Are Automating Slip-and-Fall Documentation in 2026
To secure the clinical utility of pathology foundation models against these sophisticated threats, the research team proposes a closed-loop methodology comprising detection, source identification, and reconfirmation. This framework utilizes a dedicated attack-detection network as a first line of defense, followed by protocolized rescanning of physical tissue slides to identify/isolate the source of the attack. Ultimately, the framework relies on a human expert in the loop to assess the morphological data and reject hallucinated diagnostic outputs, ensuring patient safety.
The rapid creation of a universal and transferable perturbation pattern, in less than 15 minutes of training time, carries significant implications for the clinical deployment and safety of AI in digital pathology and optical microscopy systems. Consequently, to support the safer development and deployment of pathology foundation models, it is essential to comprehensively study these threats and develop robust defenses.
The study was supervised by Prof. Aydogan Ozcan of UCLA. The other authors of this work include Yuntian Wang, Xilin Yang, Che-Yung Shen, Shuhang Dong, and Nir Pillar.
Article: https://doi.org/10.1038/s41377-026-02347-w
Source: ucla ita
Filed Under: Science
0 Comments
Latest on The Californer
- California Security Glass is an affordable bulletproof glass installation company in LA serving a variety of neighboring cities
- Allstream Energy Partners Announce Media Partnership with the 2026 EPC Show - The Energy Projects Conference
- iStar Society Enhances Vendor Subscription Program Supporting Business Credit Development
- Time-to-Revenue Becomes a Key Decision Factor for New Entrepreneurs
- STO Foundation Launching June 29, 2026 to Advance the Global Tokenization Industry
- Black Woman-Owned Dessert Brand Launches Sip & Dip in Los Angeles
- West Virginia Leaders Announce Support for Election Integrity Network's Model Election Laws Handbook
- Snell & Wilmer Partners Joshua K. Partington and Victor J. Roehm III Elected as Fellows of ACMA
- Rare Public Screenings at Creative Chakra Film Festival
- Espieve Featured in Clean Living Magazine's Exclusive Filoli Creator Experience
- Long Beach Animal Care Services Launches Annual Foster the Fourth Initiative
- Long Beach: City Invites Community to Celebrate Global Soccer Tournament with Matches in the Park
- California: Governor, First Partner statement on the passing of David Hockney
- Ralph Trigg Brings Over 30 Years of Financial Advisory Experience to Families in the CoachellaValley
- ReGrow Medical Brings FUE Hair Transplants to Five Southern California Locations
- CCHR Condemns Behavioral Treatment After FDA's Missed Deadline to Ban Shock Device
- Maximizing ROI and Resilience in Smart Buildings with IEI iRM + iVEC
- New Free Guide Helps Sacramento Homeowners Sell Their Houses Fast
- Brilliant Minds to Gather in Fort Worth for National Mensa Event
- Terminally-Ill Woman to Renew Wedding Vows in Sanibel Island Dream Ceremony