Malware4 min read
Xinference AI Package Compromised on PyPI in TeamPCP Wave
Three malicious versions of the xinference AI inference library were uploaded to PyPI, targeting cloud credentials and SSH keys from 680K+ users. TeamPCP claims a copycat is responsible.
James RiveraMay 4, 2026