Malicious update exposes credentials in widely used ML monitoring tool
A critical security flaw in a popular open-source CLI for ML performance monitoring led to a credential-stealing attack affecting over a million users monthly. Discover how attackers exploited a developer account to push malicious code.