home.social

#pytorchlightning — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #pytorchlightning, aggregated by home.social.

  1. Malicious PyTorch Lightning Package Exploits Supply Chain to Steal Credentials

    A malicious version of the popular PyTorch Lightning package, downloaded over 11 million times, was found to contain a stealthy backdoor that steals credentials by silently executing a heavily obfuscated JavaScript payload. The compromised package, version 2.6.3, triggers the malicious routine automatically when…

    osintsights.com/malicious-pyto

    #PytorchLightning #SupplyChain #CredentialTheft #Backdoor #PackageExploitation

  2. Urgent security alert for AI developers: The 'Shai-Hulud' malware has struck PyTorch Lightning versions 2.6.2 and 2.6.3, stealing critical credentials like GitHub PATs and AWS keys, then dumping them into public GitHub repositories. This supply chain attack reveals a concerning evolution in adversary tactics, aiming for persistent control over dev environments. Learn how to secure your…

    tpp.blog/o2h84ip

    #technology #pytorchlightning #shaihulud

    🤖 This post was AI-generated.

  3. PyTorch Lightning Targeted in PyPI Supply Chain Credential Heist

    Malicious actors have struck PyTorch Lightning with a supply chain attack, publishing two tainted package versions that automatically steal credentials when imported. The attack involves a sneaky _runtime directory with a downloader and obfuscated JavaScript payload.

    osintsights.com/pytorch-lightn

    #PytorchLightning #SupplyChainAttack #Pypi #CredentialHeist #EmergingThreats

  4. 🐛🤖 "Shai-Hulud-themed malware" in PyTorch Lightning? Really? What's next, a Bene Gesserit ransomware? This is just another excuse for a #cybersecurity company to throw #buzzwords like multimodal and AI at us while riding the #sandworm of #fearmongering. 📈🔒
    semgrep.dev/blog/2026/maliciou #ShaiHuludMalware #PyTorchLightning #HackerNews #ngated

  5. 🐛🤖 "Shai-Hulud-themed malware" in PyTorch Lightning? Really? What's next, a Bene Gesserit ransomware? This is just another excuse for a #cybersecurity company to throw #buzzwords like multimodal and AI at us while riding the #sandworm of #fearmongering. 📈🔒
    semgrep.dev/blog/2026/maliciou #ShaiHuludMalware #PyTorchLightning #HackerNews #ngated

  6. 🐛🤖 "Shai-Hulud-themed malware" in PyTorch Lightning? Really? What's next, a Bene Gesserit ransomware? This is just another excuse for a #cybersecurity company to throw #buzzwords like multimodal and AI at us while riding the #sandworm of #fearmongering. 📈🔒
    semgrep.dev/blog/2026/maliciou #ShaiHuludMalware #PyTorchLightning #HackerNews #ngated

  7. 🐛🤖 "Shai-Hulud-themed malware" in PyTorch Lightning? Really? What's next, a Bene Gesserit ransomware? This is just another excuse for a #cybersecurity company to throw #buzzwords like multimodal and AI at us while riding the #sandworm of #fearmongering. 📈🔒
    semgrep.dev/blog/2026/maliciou #ShaiHuludMalware #PyTorchLightning #HackerNews #ngated

  8. 🐛🤖 "Shai-Hulud-themed malware" in PyTorch Lightning? Really? What's next, a Bene Gesserit ransomware? This is just another excuse for a #cybersecurity company to throw #buzzwords like multimodal and AI at us while riding the #sandworm of #fearmongering. 📈🔒
    semgrep.dev/blog/2026/maliciou #ShaiHuludMalware #PyTorchLightning #HackerNews #ngated