Security Feed
  1. Archives

Mar 24 2026 LiteLLM loses game of Trivy pursuit, gets compromised

Source

Python interface for LLMs infected with malware via polluted CI/CD pipeline Two versions of LiteLLM, an open source interface for accessing multiple large language models, have been removed from the Python Package Index (PyPI) following a supply chain attack that injected them with malicious credential-stealing code.... [...]

Posted by Thomas Claburn on Tue 24 March 2026 in The Register.

Categories

  1. Ars Technica
  2. AWS Security
  3. BleepingComputer
  4. Brian Krebs
  5. Bruce Schneier
  6. GCP Security
  7. Google Project Zero
  8. The Daily Swig
  9. The Guardian
  10. The Register
  11. Threatpost

Tag cloud

  • Security
  • Uncategorized
  • Security, Identity, & Compliance
  • Microsoft
  • Biz & IT
  • Security Blog
  • AI
  • Security & Identity
  • Google
  • CryptoCurrency
  • Announcements
  • Foundational (100)
  • Legal
  • A Little Sunshine
  • Artificial Intelligence
  • privacy
  • Mobile
  • Apple
  • squid
  • hacking
  • LLM
  • Advanced (300)
  • Intermediate (200)
  • The Coming Storm
  • Technical How-to

Security Feed. Powered by Pelican and m.css. Code is available on GitLab.