all InfoSec news
Exploiting a critical supply chain attack on PyTorch - discovery, exploitation, and submission process
Jan. 11, 2024, 5:56 p.m. | /u/IrohsLotusTile
cybersecurity www.reddit.com
The details around discovery and exploitation are pretty long, but I released a full walkthrough here: https://johnstawinski.com/2024/01/11/playing-with-fire-how-we-executed-a-critical-supply-chain-attack-on-pytorch/.
Hopefully attacks like these can convince the greater security community to take CI/CD and supply chain security seriously - in my experience, this is a …
attack attacks boeing critical cybersecurity discovery exploitation exploited exploiting google hackers lockheed lockheed martin major meta nation nation-states platforms process pytorch states submission supply supply chain supply chain attack target vulnerability world
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Architect - Identity and Access Management Architect (80-100% | Hybrid option)
@ Swiss Re | Madrid, M, ES
Alternant - Consultant HSE (F-H-X)
@ Bureau Veritas Group | MULHOUSE, Grand Est, FR
Senior Risk/Cyber Security Analyst
@ Baker Hughes | IN-KA-BANGALORE-NEON BUILDING WEST TOWER
Offensive Security Engineer (University Grad)
@ Meta | Bellevue, WA | Menlo Park, CA | Seattle, WA | Washington, DC | New York City
Senior IAM Security Engineer
@ Norfolk Southern | Atlanta, GA, US, 30308