Cyber Daily Report

News

Home News

PyPI Supply Chain Attack Compromises LiteLLM, Enabling the Exfiltration of Sensitive Information

  • Sergio De Simone--InfoQ.com
  • published date: 2026-03-31 21:00:00 UTC

Discovered by FutureSearch researcher Callum McMahon, a supply chain attack against LiteLLM on PyPI resulted in over 40 thousand downloads of a compromised version that installed a malicious payload capable of harvesting and exfiltrating sensitive information…

Discovered by FutureSearch researcher Callum McMahon, a supply chain attack against LiteLLM on PyPI resulted in over 40 thousand downloads of a compromised version that installed a malicious payload … [+2671 chars]

Most Popular

Inventors of Quantum Cryptography Win Turing Award

  • None -- securityboulevard.com
  • Published date: 2026-03-31 00:00:00 UTC

The Quantum Clock is Ticking and Your Encryption is Running Out of Time

  • Steve Durbin -- securityboulevard.com
  • Published date: 2026-03-31 00:00:00 UTC

Google Aggressively Targets 2029 to Migrate Fully to PQC

  • Teri Robinson -- securityboulevard.com
  • Published date: 2026-03-31 00:00:00 UTC

Poisoned Axios: npm Account Takeover, 50 Million Downloads, and a RAT That Vanishes After Install

  • None -- securityboulevard.com
  • Published date: 2026-03-31 00:00:00 UTC

What Makes Browser Hijacking a Silent Threat?

  • None -- securityboulevard.com
  • Published date: 2026-03-31 00:00:00 UTC