A compromised version of the PyTorch Lightning package on PyPI deployed a credential stealer targeting browser data, environment files, and cloud service credentials. The malicious package has since been removed.
Security researchers discovered a backdoored version of PyTorch Lightning on the Python Package Index (PyPI) that automatically executed a credential-stealing payload upon installation.
The malicious package targeted sensitive data across multiple attack surfaces: browser credential stores, local environment files containing API keys and tokens, and cloud service authentication data. This broad approach maximizes the value of compromised systems for attackers.
PyTorch Lightning is a popular machine learning framework used by thousands of developers. The compromise demonstrates the ongoing risk posed by supply chain attacks targeting open-source package repositories. Attackers can reach large numbers of developers by poisoning widely-used dependencies.
Impact and Response
The affected package was identified and removed from PyPI. Security teams from JFrog and other organizations analyzed the malware, confirming its credential-stealing functionality. Developers who installed the backdoored version face potential exposure of sensitive authentication material.
PyPI and the broader open-source community have implemented various countermeasures against such attacks, including package verification systems and automated malware scanning. However, sophisticated attacks can still evade detection during initial publication.
Recommendations
Developers should review installation logs to determine if they downloaded the compromised version. Any systems that installed the malicious package should be treated as potentially compromised—credentials stored in browsers, environment files, and cloud services should be rotated immediately.
Organizations should implement dependency scanning tools that monitor package repositories for malicious or suspicious updates. Maintaining an inventory of dependencies and their versions enables faster response to supply chain incidents.
The incident underscores the importance of securing development environments with the same rigor applied to production systems, as compromised developer machines can serve as entry points for broader infrastructure attacks.
Grok CLI experienced a critical bug that caused it to upload entire home directories to Google Cloud Storage. The issue sparked significant discussion in the developer community about data handling practices.
Aylo, Pornhub's parent company, will restore access to the site in the UK through Apple's device-level age verification system in iOS 26.4. The move requires users to complete age verification before accessing the platform.
Australia's eSafety Commissioner has identified significant gaps in how major tech platforms address online sexual extortion. Young men are reporting sextortion at higher rates than any other demographic, with over 2,000 complaints filed in just six months.
Angelo Martino, a ransomware negotiator, was sentenced to 70 months in prison for colluding with attackers to defraud victims. Martino helped orchestrate scams that extracted over $75 million from ransomware victims.