SUPPLY-CHAIN ATTACK – Cyber Reports Cybersecurity News & Information

PyTorch discloses malicious dependency chain compromise over holidays

PyTorch has identified a malicious dependency with the same name as the framework’s ‘torchtriton’ library. This has led to a successful compromise via the dependency confusion attack vector. PyTorch admins are...

Business2 years ago

Hundreds of U.S. news sites push malware in supply-chain attack

Threat actors are using the compromised infrastructure of an undisclosed media company to deploy the SocGholish JavaScript malware framework (also known as FakeUpdates) on the websites...

Business2 years ago

npm packages used by crypto exchanges compromised

Multiple npm packages published by the crypto exchange, dYdX, and used by at least 44 cryptocurrency projects appear to have been compromised. Powered by the Ethereum blockchain, dydX is a...

Cyber Reports Cybersecurity News & Information

All posts tagged "SUPPLY-CHAIN ATTACK"

PyTorch discloses malicious dependency chain compromise over holidays

Hundreds of U.S. news sites push malware in supply-chain attack

npm packages used by crypto exchanges compromised

Categories

Recent Posts

Recent Comments

IoT security threats highlight the need for zero trust principles

New infosec products of the week: October 27, 2023

Raven: Open-source CI/CD pipeline security scanner

Warning: Google Alerts abused to push fake Adobe Flash updater

CBP Cybersecurity Failures Left Travelers’ Personal Info at Risk, IG Says

Sophos Firewall zero-day bug exploited weeks before fix

Illinois’ financial crisis could bring the state to a halt

The final 6 ‘Game of Thrones’ episodes might feel like a full season

New Season 8 Walking Dead trailer flashes forward in time