Sign in Create account

#packageexploitation — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #packageexploitation, aggregated by home.social.

Analyst207 @[email protected] · 2026-05-04 · 17:44 UTC

Malicious PyTorch Lightning Package Exploits Supply Chain to Steal Credentials
A malicious version of the popular PyTorch Lightning package, downloaded over 11 million times, was found to contain a stealthy backdoor that steals credentials by silently executing a heavily obfuscated JavaScript payload. The compromised package, version 2.6.3, triggers the malicious routine automatically when…
https://osintsights.com/malicious-pytorch-lightning-package-exploits-supply-chain-to-steal-credentials?utm_source=mastodon&utm_medium=social
#PytorchLightning #SupplyChain #CredentialTheft #Backdoor #PackageExploitation

#pytorchlightning #supplychain #credentialtheft #backdoor #packageexploitation