A sophisticated and ongoing supply-chain attack operating for the past year has been stealing sensitive login credentials ...
The yawpp GitHub project is said to have enabled the exfiltration of over 390,000 credentials, likely for WordPress accounts, ...
Attackers exploited a script injection vulnerability via GitHub Actions to inject malicious code during the automated build ...
The Ultralytics AI library hack points to critical vulnerabilities in the Python ecosystem—but not where you might think.
A compromised version of the popular ultralytics AI library has been found to deliver a cryptocurrency mining payload.
Security researchers claim Prometheus carries numerous dangerous vulnerabilities Other researchers have been shouting from the rooftops for years now The bugs could be used to steal credentials, run ...
Two Ultralytics AI library versions compromised to deliver cryptominers. Update to secure versions immediately.
Executive Summary On December 4, a malicious version 8.3.41 of the popular AI library ultralytics — which has almost 60 ...