Trending...
- New Home of the Month: Spacious Luxury Meets Modern Design in The Bristol at Heritage at Manalapan - 299
- Some thoughts about Advertising on the Moon…AND…a poem about Cosmology called "Cosmolo…Gee"
- Tru by Hilton El Paso Airport Opens to Guests
LOS ANGELES - Californer -- The integration of AI into digital pathology through general-purpose foundation models promises to significantly enhance various tasks, such as cancer detection and subtyping. However, these powerful AI systems also introduce severe vulnerabilities, rendering them susceptible to adversarial attacks. Researchers at the University of California, Los Angeles (UCLA) have introduced Universal and Transferable Adversarial Perturbations (UTAP) to investigate these potential threats and shed light on defense mechanisms against such adversarial attacks.
UTAP utilizes an adaptive optimization process to iteratively craft a subtle microscopic noise pattern. When this fixed noise pattern is added to a pathology image, for example, corresponding to a microscopic image of a biopsied tissue section, it systematically disrupts the feature representation capabilities of pathology foundation models by minimizing the similarity between the feature representations of the original and perturbed images. This adversarial methodology fundamentally hampers the representational power of AI models.
More on The Californer
UCLA research demonstrated two key capabilities of UTAP: universality and transferability. The optimized microscopic perturbation of the attack can be applied across diverse sets of tissue images, independent of the training dataset, confirming its universality. Furthermore, the perturbation degrades the performance of various external pathology foundation models without prior exposure, demonstrating extensive transferability to new AI models never seen before. Quantitative evaluations revealed that applying the UTAP microscopic perturbation to various tissue images resulted in significant reductions in accuracy across seven state-of-the-art pathology foundation models.
Standard defense mechanisms, such as the application of spatial low-pass filters to neutralize high-frequency adversarial noise, were proven insufficient. UCLA researchers demonstrated that an adaptive adversary could systematically bypass these filtering defenses by incorporating similar filters into the forward pass during perturbation training.
More on The Californer
To secure the clinical utility of pathology foundation models against these sophisticated threats, the research team proposes a closed-loop methodology comprising detection, source identification, and reconfirmation. This framework utilizes a dedicated attack-detection network as a first line of defense, followed by protocolized rescanning of physical tissue slides to identify/isolate the source of the attack. Ultimately, the framework relies on a human expert in the loop to assess the morphological data and reject hallucinated diagnostic outputs, ensuring patient safety.
The rapid creation of a universal and transferable perturbation pattern, in less than 15 minutes of training time, carries significant implications for the clinical deployment and safety of AI in digital pathology and optical microscopy systems. Consequently, to support the safer development and deployment of pathology foundation models, it is essential to comprehensively study these threats and develop robust defenses.
The study was supervised by Prof. Aydogan Ozcan of UCLA. The other authors of this work include Yuntian Wang, Xilin Yang, Che-Yung Shen, Shuhang Dong, and Nir Pillar.
Article: https://doi.org/10.1038/s41377-026-02347-w
UTAP utilizes an adaptive optimization process to iteratively craft a subtle microscopic noise pattern. When this fixed noise pattern is added to a pathology image, for example, corresponding to a microscopic image of a biopsied tissue section, it systematically disrupts the feature representation capabilities of pathology foundation models by minimizing the similarity between the feature representations of the original and perturbed images. This adversarial methodology fundamentally hampers the representational power of AI models.
More on The Californer
- California: Governor Newsom proclaims Asian American and Pacific Islander Heritage Month
- California: Governor Newsom celebrates graduation of emergency response leaders, highlights investments since 2019
- eRacks Launches Video NAS Configurations - Surveillance-Certified Storage for VMS, PACS, and 24x7
- California: First Partner Siebel Newsom celebrates the annual Move Your Body, Calm Your Mind Day in Sacramento
- Justice Holmes Disposes at North Coast Repertory Theatre
UCLA research demonstrated two key capabilities of UTAP: universality and transferability. The optimized microscopic perturbation of the attack can be applied across diverse sets of tissue images, independent of the training dataset, confirming its universality. Furthermore, the perturbation degrades the performance of various external pathology foundation models without prior exposure, demonstrating extensive transferability to new AI models never seen before. Quantitative evaluations revealed that applying the UTAP microscopic perturbation to various tissue images resulted in significant reductions in accuracy across seven state-of-the-art pathology foundation models.
Standard defense mechanisms, such as the application of spatial low-pass filters to neutralize high-frequency adversarial noise, were proven insufficient. UCLA researchers demonstrated that an adaptive adversary could systematically bypass these filtering defenses by incorporating similar filters into the forward pass during perturbation training.
More on The Californer
- Governor Newsom applauds updates to California's Cap-and-Invest Program
- California: Governor Newsom announces appointments 5.29.2026
- UK Financial Ltd Audits Full Ethereum Architecture Verifies Corporate Wallets and 19-Token Ecosystem Ahead of CoinMarketCap Filing for Global Ranking
- Wooffy Redefines Modern Pet Living Through Design-Driven Luxury Dog Houses
- Creative Investment Research Analysis Finds Slower GDP Growth, Rising Inflation
To secure the clinical utility of pathology foundation models against these sophisticated threats, the research team proposes a closed-loop methodology comprising detection, source identification, and reconfirmation. This framework utilizes a dedicated attack-detection network as a first line of defense, followed by protocolized rescanning of physical tissue slides to identify/isolate the source of the attack. Ultimately, the framework relies on a human expert in the loop to assess the morphological data and reject hallucinated diagnostic outputs, ensuring patient safety.
The rapid creation of a universal and transferable perturbation pattern, in less than 15 minutes of training time, carries significant implications for the clinical deployment and safety of AI in digital pathology and optical microscopy systems. Consequently, to support the safer development and deployment of pathology foundation models, it is essential to comprehensively study these threats and develop robust defenses.
The study was supervised by Prof. Aydogan Ozcan of UCLA. The other authors of this work include Yuntian Wang, Xilin Yang, Che-Yung Shen, Shuhang Dong, and Nir Pillar.
Article: https://doi.org/10.1038/s41377-026-02347-w
Source: ucla ita
Filed Under: Science
0 Comments
Latest on The Californer
- Christian Apocalyptic Thriller Explores Biblical Prophecy, Global Technology, & the Rise of the Ant
- California: Governor Newsom proclaims Mental Health Awareness Month
- Templeton Glass Announces Award-Winning Rebrand
- California: Governor Newsom announces new funding for nonprofits and faith-based groups following San Diego mosque shooting
- The Hidden Price Of Lost Property In UK Schools
- SYOKAMI Unveils Ultra-Sharp Japanese-Style Steak Knife Set Collection for the Ultimate Dining Experience
- Milton Collier, CEO & President of Freight Broker 911, Eliminates the #1 Barrier to Entry in Logistics: Announces 100% Free Freight Broker Training
- FDA-Cleared AI Neuropsychiatry Platform, Million-Dose Ketamine Manufacturing and Presidential Psychedelic Initiative Drive Growing Momentum for NRXP
- The Best Pet Photos Are Usually the Unplanned Ones
- AI Velocity Trading Launches Institutional-Grade Algorithmic Engine for Retail Investors
- Speaker and Certified Coach Syrena N. Williams Debuts Powerful New Book on Healing, Identity, and Wholeness
- American-Ethiopian Public Affairs Committee Endorses Jake Levine for Congress
- EasyDocForms Adds CSA STAR Registry Listing for Healthcare Intake Platform
- Governor Newsom signs legislation to further protect California elections from interference and intimidation
- Essential Oxygen Launches on Faire with Exclusive Wholesale Offerings
- ParkLens Launches AI-Powered Parking Sign Decoder to Help Drivers Avoid Costly Parking Tickets
- Office of Youth Development Announces 2026 Youth Power Participatory Budgeting Long Beach Awardees
- Kryptokasinot.io Raises Concerns Over Proposed Cryptocurrency Restrictions in Finland's Gambling Reform
- MyOnlineStaff.com Launches Project Management Platform Built for Remote Staffing Teams
- For Father's Day: Treat yourself and your Dad to a book of jokes called "Crazy Robert's Joke Book"