1. Microsoft Probes Compromised Mistral AI PyPI Package Tied to Mini Shai-Hulud Supply Chain Attack
Microsoft has initiated an investigation into a compromised Python package uploaded to the Python Package Index (PyPI) under the Mistral AI branding. Security researchers have confirmed the malicious package, identified as version 2.4.6, is connected to the broader Mini Shai-Hulud supply chain campaign, highlighting th...