Today > | 9 High | 16 Medium vulnerabilities - You can now download lists of IOCs here!
1 attack reports | 0 vulnerabilities
A malicious version of the popular AI library ultralytics was published on PyPI, containing downloader code for the XMRig coinminer. The compromise was achieved by exploiting a known GitHub Actions script injection. Two versions, 8.3.41 and 8.3.42, were affected before a clean version 8.3.43 was re…