A recent supply chain attack has targeted the popular Python package Xinference, after malicious versions were uploaded to the Python Package Index (PyPI), putting developers and organizations at risk of credential theft. According to security findings, Xinference versions 2.6.0, 2.6.1, and 2.6.2 were compromised with hidden infostealer malware. The package, which has recorded over 600,000 […] The post Xinference PyPI Package Compromised With Malicious Code to Steal Cloud Credentials appeared first on Cyber Security News.