National Cyber Warfare Foundation (NCWF)

Xinference PyPI Supply Chain Poisoning Warning
0 user ratings		2026-04-24 10:54:45
milo
Blue Team (CND)

Overview Recently, NSFOCUS CERT detected that Xinference had suffered supply chain poisoning in its PyPI warehouse. The attacker stole the PyPI release permission credentials of Xinference maintainers and released three consecutive malicious versions implanted with Trojans on April 22, GMT+8. When triggered by the user, it will collect cloud credentials, SSH keys, API tokens, Sensitive […]


The post Xinference PyPI Supply Chain Poisoning Warning appeared first on NSFOCUS.


The post Xinference PyPI Supply Chain Poisoning Warning appeared first on Security Boulevard.



NSFOCUS

Source: Security Boulevard
Source Link: https://securityboulevard.com/2026/04/xinference-pypi-supply-chain-poisoning-warning/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.