credential-stealing

(1 article)

May 4, 2026

PyTorch Lightning PyPI Package Drops Credential Stealer

PyTorch Lightning v2.6.3 on PyPI contained a hidden credential stealer targeting browsers, .env files, and cloud APIs. Here's what developers need to know.