all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise

Add to bookmarks
Jan. 12, 2024, 12:20 p.m. | Ionut Arghire

SecurityWeek RSS Feed www.securityweek.com

Researchers detail a CI/CD attack leading to PyTorch releases compromise via GitHub Actions self-hosted runners.


The post New Class of CI/CD Attacks Could Have Led to PyTorch Supply Chain Compromise appeared first on SecurityWeek.

actions application security attack attacks class compromise featured github github actions led pytorch releases researchers runners supply supply chain supply chain compromise supply chain security

Visit resource

More from www.securityweek.com / SecurityWeek RSS Feed

Botnet Disrupted by FBI Still Used by Russian Spies, Cybercriminals 2 hours ago | www.securityweek.com
apt28 botnet cybercrime cybercriminals +12
CISA, FBI Urge Organizations to Eliminate Path Traversal Vulnerabilities 2 hours ago | www.securityweek.com
abusing attacks cisa critical +14
ArcaneDoor Espionage Campaign Targeting Cisco Firewalls Linked to China 2 hours ago | www.securityweek.com
analysis arcanedoor campaign china +10
Horizon3.ai Introduces AI-Assisted Service to Prioritize and Patch Vulnerabilities Faster 3 hours ago | www.securityweek.com
action artificial intelligence defensive exploitation +9
Microsoft Warns of ‘Dirty Stream’ Vulnerability in Popular Android Apps 4 hours ago | www.securityweek.com
android android apps apps attack +8
White House Issues National Security Memorandum for Critical Infrastructure 6 hours ago | www.securityweek.com
critical critical infrastructure government government & policy +10
Ukrainian REvil Ransomware Affiliate Gets 13 Years in US Prison 7 hours ago | www.securityweek.com
affiliate cybercrime prison ransomware +6
Ransomware Defense Startup Mimic Raises Hefty $27M Seed Round 22 hours ago | www.securityweek.com
ballistic ventures called coming data protection +16
Building the Right Vendor Ecosystem – a Guide to Making the Most of RSA Conference 23 hours ago | www.securityweek.com
building conference ecosystem guide +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Offensive Security Engineer

@ Ivanti | United States, Remote
View on infosec-jobs.com

Senior Security Engineer I

@ Samsara | Remote - US
View on infosec-jobs.com

Senior Principal Information System Security Engineer

@ Chameleon Consulting Group | Herndon, VA
View on infosec-jobs.com

Junior Detections Engineer

@ Kandji | San Francisco
View on infosec-jobs.com

Data Security Engineer/ Architect - Remote United States

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com
View more jobs