Malicious litellm_init.pth in litellm 1.82.8 PyPI package – credential stealer
theanonymousone
722 points
1 comment
March 24, 2026
Related Discussions
Found 5 related stories in 84.8ms across 8,358 title embeddings via pgvector HNSW
- Tell HN: Litellm 1.82.7 and 1.82.8 on PyPI are compromised dot_treo · 582 pts · March 24, 2026 · 71% similar
- LiteLLM PyPI has been compromised an hour ago, do not update Bullhorn9268 · 23 pts · March 24, 2026 · 59% similar
- My minute-by-minute response to the LiteLLM malware attack Fibonar · 336 pts · March 26, 2026 · 52% similar
- Telnyx package compromised on PyPI overflowy · 84 pts · March 27, 2026 · 49% similar
- Shai-Hulud Themed Malware Found in the PyTorch Lightning AI Training Library j12y · 366 pts · April 30, 2026 · 49% similar
Discussion Highlights (1 comments)
dang
Comments moved to https://news.ycombinator.com/item?id=47501426 , which was posted first.