TechRepublic

Machine-Learning Python package compromised in supply chain attack

A nightly build version of a machine-learning framework dependency has been compromised. The package ran malicious code on affected systems and stole data from unsuspecting users. Image: ...
Dark Reading

Cyberattackers Torch Python Machine Learning Project

An unknown attacker slipped a malicious binary into the PyTorch machine learning project by registering a malicious project with the Python Package Index (PyPI), infecting users' machines if they ...