Popular Python AI library hacked to deliver malware

The AI model Ultralytics YOLO11 was compromised in a supply chain attack on PyPI, with malicious versions uploading the XMRig cryptocurrency miner to victims' devices. Despite addressing the initial attack, new compromised versions have emerged. YOLO11, a popular computer vision tool, has over 30,000 GitHub stars and numerous daily downloads. Users are advised to verify package integrity when downloading or updating.