[SECURITY]■ STORY TIMELINE

MALICIOUS PYTORCH LIGHTNING PACKAGE STEALS CREDENTIALS

A compromised version of the PyTorch Lightning package on PyPI deployed a credential stealer targeting browser data, environment files, and cloud service credentials. The malicious package has since been removed.

1 SOURCEFIRST SEEN MAY 4, 05:15 PM► READ THE ARTICLE

Bleeping Computer+0m

Backdoored PyTorch Lightning package drops credential stealer

A malicious version of the PyTorch Lightning package published on the Python Package Index (PyPI) delivers a credential-…

◄ BACK TO ARTICLE