Vulnerabilidade por #malware no código aberto / #opensource, comprometeu diversos projetos. Veja o que fazer pra evitar e se proteger e como isso impacta a sociedade em geral. #tech #technologu #tecnologia #code #python #trivy #liteLLM

www.youtube.com/watch?v=BLCY...

GitHub - kreuzberg-dev/liter-llm: Universal LLM API client — 142+ providers, 11 native language bindings, powered by Rust core Universal LLM API client — 142+ providers, 11 native language bindings, powered by Rust core - kreuzberg-dev/liter-llm

Following the #LiteLLM supply chain attack - we just released an alternative. Happy to introduce Liter-LLM - faster, leaner, and built on Rust safety.

github.com/kreuzberg-de...

An AI gateway designed to steal your data In March 2026 attackers trojanized the popular Python library LiteLLM by uploading malicious versions to PyPI and OpenVSX that executed Base64-encoded payloads to collect secrets and deploy further stages. The malware harvested local files and cloud runtime credentials (including AWS IMDS), sought crypto wallets, established persistence locally and in Kubernetes, and exfiltrated encrypted archives to a remote C2. #LiteLLM #Checkmarx

In March 2026, attackers trojanized LiteLLM Python packages on PyPI, deploying Base64-encoded payloads to steal local files, cloud credentials, and crypto wallets, using .pth persistence in Kubernetes environments. #LiteLLM #PythonSecurity #USA

The LiteLLM Supply Chain Attack: How a Security Scanner Became a Backdoor On March 24, 2026, versions 1.82.7 and 1.82.8 of LiteLLM — with ~97 million monthly downloads — were found to contain a credential-stealing backdoor. Here's what happened, how it worked, and what you ...

The LiteLLM Supply Chain Attack: How a Security Scanner Became a Backdoor

techlife.blog/posts/litell...

#LiteLLM #SupplyChainAttack #PyPI #Security #Malware #Python #TeamPCP #AISecurity

#Delve did the security compliance on #LiteLLM, an #AI project hit by #malware

techcrunch.com/2026/03/25/delve-did-the...

#cybersecurity

Your AI Gateway Was a Backdoor: Inside the LiteLLM Supply Chain Compromise TeamPCP executed a coordinated multi-ecosystem supply chain campaign that compromised Trivy CI/CD runners and pushed trojanized LiteLLM versions (1.82.7 and 1.82.8) to PyPI, deploying a three-stage payload that harvested credentials, targeted Kubernetes clusters, and installed a persistent backdoor. The incident demonstrates how AI proxy services that centralize API keys become high-value...

TeamPCP compromised Trivy CI/CD runners to inject trojanized LiteLLM versions 1.82.7 and 1.82.8 into PyPI, deploying a multi-stage payload targeting credentials, Kubernetes clusters, and establishing persistent backdoors. #SupplyChain #LiteLLM

this was wild! "The public GitHub issue has been closed as "not planned" by the owner, and is spammed by hundreds of bots to dillute the discussion. The author of litellm have been very likely fully compromised." #litellm #supplychain #attack

Une cyberattaque au coeur de l'IA sème la panique chez les développeurs Une cyberattaque massive vient de frapper le monde de l'intelligence artificielle. Des pirates sont en effet parvenus à compromettre une brique logicielle utilisée par de nombreux développeurs. Le hac...

Une #cyberattaque au coeur de l’ #IA sème la panique chez les développeurs
👉 #LiteLLM, l’une des bibliothèques Python les plus utilisées dans l’écosystème de l’IA générative, vient de subir une attaque
www.01net.com/actualites/c...

Another supply chain attack hits home: LiteLLM was compromised by TeamPCP. Learn how a stolen token led to a massive infostealer deployment and what it means for your software.

thepixelspulse.com/posts/litellm-malware-at...

#litellm #teampcp #pypi

Two Popular Apps Poisoned in One Week – Don’t Fall Victim! Two supply chain attacks hit Apifox and LiteLLM. Check if you're affected and rotate credentials now.

Two supply chain attacks this week targeted API and AI developers—have you checked your systems?
#AI #Apifox #LiteLLM
open.substack.com/pub/aidisrup...

Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of devices during the attack.

Popular #LiteLLM #PyPI package backdoored to steal credentials, auth tokens

www.bleepingcomputer.com/news/security/popular-li...

#cybersecurity #TeamPCP

LiteLLM Python Library Poisoned — Do Not Update LiteLLM Python library poisoned in supply chain attack. Do not update. Critical secrets exposed. Security alert for AI developers.

LiteLLM Python library was poisoned via PyPI on March 24 — check if you have version 1.82.8 installed and rotate all credentials immediately
#LiteLLM #Python #PyPI
open.substack.com/pub/pythonli...

【緊急】月間9500万DLのLiteLLMが乗っ取られた。インストールしただけでSSH鍵・AWS認証・仮想通貨が全部盗まれる - Qiita あなたのマシンにLiteLLMが入っていたら、今すぐこの記事を読んでください。 2026年3月24日、AIエージェント開発者の間で最も広く使われているPythonライブラリの一つ「LiteLLM」が、サプライチェーン攻撃により完全に乗っ取られました。 月間9,500万ダウン...

【🚨緊急】Python界隈で激震。9500万DLの「LiteLLM」が乗っ取られ、インストールしただけでSSH鍵やAWS認証情報が流出する事例が報告されてます。

AI開発で安易にライブラリを追加する時代、脆弱性チェックの重要性が極まってますね。皆さんのプロジェクトでは依存関係の検証どうしてますか？

#AI #セキュリティ #Python #OSS #LiteLLM

https://qiita.com/emi_ndk/items/2332ff5c93e63ab736ad

Supply chain attack hits widely-used AI package, risks impacting thousands of companies LiteLLM, an open-source Python package, was compromised in a supply-chain attack when malicious versions 1.82.7 and 1.82.8 were published to PyPI and contained code to exfiltrate cloud credentials, API keys, and cryptocurrency wallets while installing a persistent downloader. Researchers link the campaign to a group claiming to be TeamPCP and warn...

Supply chain attack on LiteLLM Python package versions 1.82.7 and 1.82.8 exfiltrated cloud credentials, API keys, and crypto wallets. Linked to threat group TeamPCP, risking thousands of companies globally. #SupplyChain #LiteLLM #CloudRisk

The irony writes itself...
#Delve #LiteLLM #Cybersecurity #SOC2 #SecurityCompliance

TeamPCP Backdoors LiteLLM via Trivy
Read More: buff.ly/9DwmFvk

#TeamPCP #LiteLLM #Trivy #PyPI #SupplyChainSecurity #KubernetesSecurity #CredentialTheft #DevSecOps

Cyberattaque LiteLLM : des millions de développeurs Python piégés par TeamPCP Dans un article de blog publié le 24 mars 2026, les chercheurs de l'entreprise de cybersécurité Snyk reviennent sur le déroulé d'une attaque menée contre la bibliothèque Python LiteLLM. Le projet, uti...

#Cyberattaque contre la #librairie #python #LiteLLM :
Cinq jours pour infiltrer, trois heures pour tout voler : comment des #hackers ont piégé des #millions de #développeurs #IA

www.numerama.com/cyberguerre/...

Alert: TeamPCP exploits LiteLLM vulnerabilities to deploy backdoors in cloud systems. Ensure your deployments are secure. #CyberSecurity #CloudSecurity #LiteLLM #TeamPCP Link: thedailytechfeed.com/teampcp-expl...

New supply chain attack hits LiteLLM with 95M monthly downloads A new supply chain attack has compromised LiteLLM on PyPI with credential-stealing malware in a library with 95 million monthly downloads.

A new supply chain attack has compromised #LiteLLM on #PyPI with credential-stealing #malware in a library with 95 million monthly downloads.

cyberinsider.com/new-supply-c...

#apisecurity #supplychain #python

LiteLLM Was Hacked Through Its Own Vulnerability Scanner The LiteLLM supply chain attack originated from Trivy - the security scanner in LiteLLM's CI/CD pipeline. TeamPCP compromised Trivy, stole the PyPI publishing token, and uploaded backdoored packages directly.

LiteLLM Was Hacked Through Its Own Vulnerability Scanner

awesomeagents.ai/news/litellm-trivy-suppl...

#Security #SupplyChain #Litellm

LiteLLM's website homepage

🧵1/3 Very interesting news in #cybersecurity right now, even Elon Musk has mentioned it.. cybercriminals used AI-generated malware to poison a popular #Python coding package called #LiteLLM that manages #AI API keys to more than 100 AI models for big firms like Nasa, Netflix, Nvidia, Adobe & Stripe.

TeamPCP Hits Trivy, Checkmarx, and LiteLLM in Credential Theft Campaign Hackers compromised Trivy, Checkmarx, and LiteLLM in a supply chain attack, stealing cloud credentials, tokens, and crypto wallet data from developers.

TeamPCP injected malicious code into Trivy, Checkmarx tools, and LiteLLM in a supply chain attack designed to steal cloud credentials, tokens, and crypto wallet data.

Read: hackread.com/teampcp-triv...

#CyberSecurity #Malware #TeamPCP #Trivy #Checkmarx #LiteLLM

LiteLLM compromis: atac masiv TeamPCP - TECHNEWSRO LiteLLM este compromis în atacul TeamPCP, expunând credențiale și sisteme la risc. Află impactul, metodele folosite și cum te poți proteja.

#LiteLLM compromised: massive #TeamPCP attack

LiteLLM Compromised: Credential Stealer in PyPI Package LiteLLM versions 1.82.7 and 1.82.8 contain a credential-stealing payload that exfiltrates SSH keys, cloud credentials, and crypto wallets to a lookalike domain. The package has 97 million monthly down...

LiteLLM versions 1.82.7 and 1.82.8 contain a credential-stealing payload that exfiltrates SSH keys, cloud credentials, and crypto wallets to a lookalike domain. The package has 97 million monthly downloads. #litellm #vulnerability #payload #exfiltration
awesomeagents.ai/news/litellm...

This is in reference to the ongoing #liteLLM security issue.

Who knew that giving a piece read access to all your local and cloud data could be a security risk.

If you've ever installed #Python #LiteLLM, you have remedial actions you need to take immediately.

Headline: A popular Python library just became a backdoor to your entire machine

Link: www.xda-developers.com/popular-python-library-b...

#Security #CyberSecurity

Not liking linking X posts here, but this is important for anyone using it:

#LiteLLM has been COMPROMISED!

https://x.com/KanikaBK/status/2036502940031328266?s=20

#ai #python

Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack TeamPCP compromised the widely used LiteLLM Python package on PyPI, publishing malicious 1.82.7 and 1.82.8 releases that install an infostealer and persistence mechanisms. The campaign, linked to the Trivy supply‑chain breach, reportedly exfiltrated data from roughly 500,000 devices and requires immediate secret rotation, artifact hunting, and Kubernetes inspection. #TeamPCP #LiteLLM

TeamPCP compromised LiteLLM PyPI package with malicious 1.82.7 & 1.82.8 releases, deploying infostealers that harvest SSH keys, cloud creds, Kubernetes tokens, and more on Python startup. #LiteLLM #PythonAttack #TeamPCP

🚨 Urgent: LiteLLM 🚨 Urgent: LiteLLM

[JP] 【緊急】LiteLLMのPyPI版が侵害！Python起動だけで秘密情報が盗まれる事態に
[EN] 🚨 Urgent: LiteLLM

ai-minor.com/blog/en/2026-03-25-17743...

#セキュリティ #LiteLLM #サプライチェーン攻撃 #AI #Tech