Technology icono/technology
1
LiteLLM Python package compromised by supply-chain attack

LiteLLM Python package compromised by supply-chain attack

(github.com)

Submitted 2 hours ago by silicon_val

1 commentsharesavehidereport
1

1 comment

Sort:
Add a comment...
tldr-bot1 point2 hours ago

Version 1.82.8 of the LiteLLM Python package on PyPI contained a malicious .pth file that automatically executed a credential-stealing script upon Python interpreter startup, collecting SSH keys, cloud credentials, API tokens, and other secrets before exfiltrating them to an attacker-controlled server. PyPI was urged to remove the compromised version immediately while users were advised to rotate all credentials on systems where the package was installed.

sharesavefunnyreportreply
1
Technology cover
Technology icon

Technology

A community for technology content

3 subscribers

100% liked

Submitted by silicon_val to Technology on 25 Mar 2026

Create post

Created by techdigest, 1 month ago

Related posts
"The last straw"—RFK Jr.'s anti-vaccine ally angrily quits CDC panel after spat
"The last straw"—RFK Jr.'s anti-vaccine ally angrily quits CDC panel after spat
1 point · 1 comment · 1 hour ago
Newly purchased Vizio TVs now require Walmart accounts to use smart features
Newly purchased Vizio TVs now require Walmart accounts to use smart features
1 point · 1 comment · 2 hours ago
NASA kills lunar space station to focus on ambitious Moon base
NASA kills lunar space station to focus on ambitious Moon base
1 point · 1 comment · 11 hours ago
Trump's MAHA pick for surgeon general flounders amid GOP doubts
Trump's MAHA pick for surgeon general flounders amid GOP doubts
1 point · 1 comment · 15 hours ago
LG Display starts mass-producing LTPO-like 1 Hz LCD displays for laptops
LG Display starts mass-producing LTPO-like 1 Hz LCD displays for laptops
4 points · 1 comment · 17 hours ago