PyTorch compromised to demonstrate dependency confusion attack on Python environments | allinfosecnews.com

Jan. 2, 2023, 6:57 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Threat actors compromised the PyTorch Machine Learning Framework by adding a malicious dependency. The maintainers of the PyTorch package warn of a supply chain attack. Users who have installed PyTorch-nightly on Linux via pip between December 25, 2022 and December 30, 2022, to uninstall it and use the latest binaries. “If you installed PyTorch-nightly on […]

The post PyTorch compromised to demonstrate dependency confusion attack on Python environments appeared first on Security Affairs.

attack breaking news compromised december dependency dependency confusion environments framework hacking hacking news information security news it information security latest linux machine machine learning maintainers malicious malware nightly package pierluigi paganini pip python pytorch security supply supply chain supply chain attack threat threat actors

More from securityaffairs.co / Security Affairs

Notorious Finnish Hacker sentenced to more than six years in prison 6 hours ago | securityaffairs.co

aleksanteri kivimäki breaking news center cyber crime +17

CISA guidelines to protect critical infrastructure against AI-based threats 10 hours ago | securityaffairs.co

agency ai ai risks analysis +27

NCSC: New UK law bans default passwords on smart devices 20 hours ago | securityaffairs.co

april ban bans breaking news +29

The FCC imposes $200 million in fines on four US carriers for unlawfully sharing user … 22 hours ago | securityaffairs.co

access breaking news carriers communications +19

Google prevented 2.28 million policy-violating apps from being published on Google Play in 2023 1 day, 7 hours ago | securityaffairs.co

android apps breaking news google +14

Financial Business and Consumer Solutions (FBCS) data breach impacted 2M individuals 1 day, 14 hours ago | securityaffairs.co

agency breach breaking news business +23

Cyber-Partisans hacktivists claim to have breached Belarus KGB 1 day, 18 hours ago | securityaffairs.co

access agency belarus belarus kgb +21

The Los Angeles County Department of Health Services disclosed a data breach 1 day, 19 hours ago | securityaffairs.co

breach breaking news cyber crime cybercrime +16

Multiple Brocade SANnav SAN Management SW flaws allow device compromise 1 day, 20 hours ago | securityaffairs.co

application area brocade brocade sannav +20

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Senior Security Architect - Northwest region (Remote)

@ GuidePoint Security LLC | Remote

View on infosec-jobs.com

Senior Consultant, Cyber Security Architecture

@ 6point6 | Manchester, United Kingdom

View on infosec-jobs.com

Junior Security Architect

@ IQ-EQ | Port Louis, Mauritius

View on infosec-jobs.com

Senior Detection & Response Engineer

@ Expel | Remote

View on infosec-jobs.com

Cyber Security Systems Engineer ISSE Splunk

@ SAP | Southbank (Melbourne), VIC, AU, 3006

View on infosec-jobs.com