Nicolas
@nvinuesa.dev
SWE @canonical working on Juju.
¡Newell's carajo!
¡Newell's carajo!
Reposted by Nicolas
in computer news: lol, lmao
github.com/ultralytics/...
it looks like github actions got tricked into running bash through a malicious branch name
which was used to ship mining malware inside python packages
incredible
github.com/ultralytics/...
it looks like github actions got tricked into running bash through a malicious branch name
which was used to ship mining malware inside python packages
incredible
Discrepancy between what's in GitHub and what's been published to PyPI for v8.3.41 · Issue #18027 · ultralytics/ultralytics
Bug Code in the published wheel 8.3.41 is not what's in GitHub and appears to invoke mining. Users of ultralytics who install 8.3.41 will unknowingly execute an xmrig miner. Examining the file util...
github.com
December 6, 2024 at 2:04 PM
in computer news: lol, lmao
github.com/ultralytics/...
it looks like github actions got tricked into running bash through a malicious branch name
which was used to ship mining malware inside python packages
incredible
github.com/ultralytics/...
it looks like github actions got tricked into running bash through a malicious branch name
which was used to ship mining malware inside python packages
incredible
Reposted by Nicolas
December 1, 2024 at 3:15 PM