TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials

By rooter

In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential theft.
According to Aikido Security, OX Security, Socket, and StepSecurity, the two malicious versions are versions 2.6.2 and 2.6.3, both of which were published on April 30, 2026. The campaign is assessed to be an

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

TeamPCP Hits SAP Packages With ‘Mini Shai-Hulud’ Attack

rooter
Cyber Security

Another AI-Assisted Software Scan Yields 9-Year-Old Linux Bug

rooter
Cyber Security

Anthropic’s Mythos Has Landed: Here’s What Comes Next for Cyber

rooter

Leave a Reply

You Missed

News

Apple’s Incoming CEO Makes His Earnings Call Debut

News

Trump nominates Fox News doctor to be the next surgeon general

News

US falls below Ukraine in press freedom as global autocracy takes hold

News

Russia cloaks launch schedule after spaceport falls in Ukraine’s sights