fromCSO Online
4 months agoInformation security
Supply chain compromise of Ultralytics AI library results in trojanized versions
The Ultralytics YOLO packages were compromised on PyPI, delivering cryptocurrency mining malware due to a build environment exploit.
Malicious code bypassed code review processes, posing risks to users installing the affected package.