Ultralytics AI Library Hacked via GitHub for Cryptomining
A supply chain attack on Ultralytics exploited GitHub Actions to inject malicious PyPI packages. Discover how it unfolded and the steps to mitigate the risk.
Wiz Threat Research
The Wiz Threat Research team investigates and analyzes emerging vulnerabilities, exploits, and security trends impacting cloud environments. With a focus on actionable insights, this international team not only provides in-depth research but also creates detections within Wiz to help customers identify and mitigate threats in their environments. Outside of deep-diving into code and threat landscapes, the researchers are dedicated to fostering a safer cloud ecosystem for all.
Wiz Threat Research Posts
Wiz observes exploitation in the wild of PAN-OS vulnerabilities
Detect and mitigate CVE-2024-0012 and CVE-2024-9474, PAN-OS vulnerabilities which Wiz Threat Research has observed being exploited in-the-wild. Organizations should patch urgently.