TeamPCP backdoors LiteLLM on PyPI using stolen Trivy credentials, 97M downloads exposed
by Artem Safonov
Stolen Trivy credentials gave TeamPCP a PyPI publishing token for LiteLLM, the most popular LLM proxy in Python. Malicious versions ran on every Python process, not just LiteLLM imports, exfiltrating SSH keys, cloud credentials, and crypto wallets. Roughly 500,000 exfiltrations …
Read more →