Cryptocurrency Miner Discovered in PyPI: Risk Alert for Python Developers and Users
A recent software supply chain attack has compromised two versions of the popular Python AI library, Ultralytics, which were found to deliver a cryptocurrency miner. The affected versions, 8.3.41 and 8.3.42, have been removed from the Python Package Index (PyPI), and a new version has been released to enhance security. The attack involved injecting malicious ...
