Ultralytics AI Library Compromised: Cryptocurrency Miner Found in PyPI Versions

Updated on December 7, 2024

In yet another software supply chain attack, it has come to light that two versions of a popular Python artificial intelligence (AI) library named ultralytics were compromised to deliver a cryptocurrency miner.
The versions, 8.3.41 and 8.3.42, have since been removed from the Python Package Index (PyPI) repository. A subsequently released version has introduced a security fix that “ensures…

Read the rest of the story at Read More

Source: The Hacker News

September 20, 2024 Uncategorized

Passwordless AND Keyless: The Future of ...

January 15, 2025 Uncategorized

FBI Deletes PlugX Malware from 4,250 Hac...

July 26, 2024 Uncategorized

Ultralytics AI Library Compromised: Cryptocurrency Miner Found in PyPI Versions

Related posts

Passwordless AND Keyless: The Future of ...

FBI Deletes PlugX Malware from 4,250 Hac...

Offensive AI: The Sine Qua Non of Cybers...

Leave a Comment Cancel reply

Recent News

Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi

Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed

⚡ Weekly Recap: Nation-State Hacks, Spyware Alerts, Deepfake Malware, Supply Chain Backdoors

Perfection is a Myth. Leverage Isn’t: How Small Teams Can Secure Their Google Workspace

Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data

Malicious Go Modules Deliver Disk-Wiping Linux Malware in Advanced Supply Chain Attack

Iranian Hackers Maintain 2-Year Access to Middle East CNI via VPN Flaws and Malware

U.S. Charges Yemeni Hacker Behind Black Kingdom Ransomware Targeting 1,500 Systems

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

How to Automate CVE and Vulnerability Advisory Response with Tines