PyTorch compromised to demonstrate dependency confusion attack on Python environments | allinfosecnews.com

Jan. 2, 2023, 6:57 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Threat actors compromised the PyTorch Machine Learning Framework by adding a malicious dependency. The maintainers of the PyTorch package warn of a supply chain attack. Users who have installed PyTorch-nightly on Linux via pip between December 25, 2022 and December 30, 2022, to uninstall it and use the latest binaries. “If you installed PyTorch-nightly on […]

The post PyTorch compromised to demonstrate dependency confusion attack on Python environments appeared first on Security Affairs.

attack breaking news compromised december dependency dependency confusion environments framework hacking hacking news information security news it information security latest linux machine machine learning maintainers malicious malware nightly package pierluigi paganini pip python pytorch security supply supply chain supply chain attack threat threat actors

More from securityaffairs.co / Security Affairs

Ticketmaster confirms data breach impacting 560 million customers 8 hours ago | securityaffairs.co

addresses administrator breach breachforums +22

Critical Apache Log4j2 flaw still threatens global finance 13 hours ago | securityaffairs.co

analyst apache apache log4j2 breaking news +31

Crooks stole more than $300M worth of Bitcoin from the exchange DMM Bitcoin 14 hours ago | securityaffairs.co

bitcoin breaking news btc cryptocurrency +13

ShinyHunters is selling data of 30 million Santander customers 1 day, 7 hours ago | securityaffairs.co

actor bank breach breaking news +20

Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours 1 day, 15 hours ago | securityaffairs.co

72 hours black lotus botnet breaking news +23

LilacSquid APT targeted organizations in the U.S., Europe, and Asia since at least 2021 1 day, 17 hours ago | securityaffairs.co

apt apt group asia attacks +19

BBC disclosed a data breach impacting its Pension Scheme members 1 day, 22 hours ago | securityaffairs.co

access bbc breach breaking news +25

CISA adds Check Point Quantum Security Gateways and Linux Kernel flaws to its Known Exploited … 2 days, 9 hours ago | securityaffairs.co

agency breaking news catalog check +31

Experts found a macOS version of the sophisticated LightSpy spyware 2 days, 10 hours ago | securityaffairs.co

breaking news cyber crime cybercrime experts +20

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com