Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
en.osm.town is one of the many independent Mastodon servers you can use to participate in the fediverse.
An independent, community of OpenStreetMap people on the Fediverse/Mastodon. Funding graciously provided by the OpenStreetMap Foundation.

Administered by:

Server stats:

268
active users

en.osm.town: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

#ultralytics

0 posts0 participants0 posts today
jbz<p>🐍 Ultralytics AI model hijacked to infect thousands with cryptominer | Bleeping Computer </p><p>"The popular Ultralytics YOLO11 AI model was compromised in a supply chain attack to deploy cryptominers on devices running versions 8.3.41 and 8.3.42 from the Python Package Index (PyPI)"</p><p><a href="https://www.bleepingcomputer.com/news/security/ultralytics-ai-model-hijacked-to-infect-thousands-with-cryptominer/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/ultralytics-ai-model-hijacked-to-infect-thousands-with-cryptominer/</span></a></p><p><a href="https://indieweb.social/tags/ultralytics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ultralytics</span></a> <a href="https://indieweb.social/tags/pypi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pypi</span></a> <a href="https://indieweb.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a></p>
Sam Stepanyan :verified: 🐘<p>Another day - another <a href="https://infosec.exchange/tags/SoftwareSupplyChain" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SoftwareSupplyChain</span></a> attack. This time <a href="https://infosec.exchange/tags/Ultralytics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ultralytics</span></a> - an AI vision library downloaded 260,000+ times a day from <a href="https://infosec.exchange/tags/PyPI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PyPI</span></a> was compromised by a malicious code injection which installed cryptocurrency miner. Avoid versions 8.3.41 &amp; 8.3.42:</p><p><a href="https://www.bleepingcomputer.com/news/security/ultralytics-ai-model-hijacked-to-infect-thousands-with-cryptominer/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">bleepingcomputer.com/news/secu</span><span class="invisible">rity/ultralytics-ai-model-hijacked-to-infect-thousands-with-cryptominer/</span></a></p>
just a💧in my 🍺<p>Attention the <a href="https://det.social/tags/python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>python</span></a> PyPI package of the popular object detection model <a href="https://det.social/tags/YOLO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>YOLO</span></a> in its implementation by <a href="https://det.social/tags/Ultralytics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ultralytics</span></a> has been compromised.</p><p>There is an angoing investigation about the matter:</p><p><a href="https://github.com/ultralytics/ultralytics/issues/18027" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/ultralytics/ultraly</span><span class="invisible">tics/issues/18027</span></a></p><p>For now it would be best do uninstall the package.</p><p><a href="https://det.social/tags/ComputerVision" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ComputerVision</span></a></p>
ExploreLive feeds
About