Malicious litellm_init.pth in litellm 1.82.8 PyPI package – credential stealer
theanonymousone
722 points
1 comment
March 24, 2026
Related Discussions
Found 5 related stories in 778.1ms across 14,015 title embeddings via pgvector HNSW
- Tell HN: Litellm 1.82.7 and 1.82.8 on PyPI are compromised dot_treo · 582 pts · March 24, 2026 · 71% similar
- LiteLLM PyPI has been compromised an hour ago, do not update Bullhorn9268 · 23 pts · March 24, 2026 · 59% similar
- My minute-by-minute response to the LiteLLM malware attack Fibonar · 336 pts · March 26, 2026 · 52% similar
- Incident CVE-2026-LGTM mooreds · 529 pts · June 26, 2026 · 50% similar
- Telnyx package compromised on PyPI overflowy · 84 pts · March 27, 2026 · 49% similar
Discussion Highlights (1 comments)
dang
Comments moved to https://news.ycombinator.com/item?id=47501426 , which was posted first.