TeamPCP Expands Supply Chain Campaign With LiteLLM PyPI Compromise
Python package LiteLLM compromised with credential-stealing malware linked to TeamPCP threat group
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Python package LiteLLM compromised with credential-stealing malware linked to TeamPCP threat group
3 critical zero-day flaws in PickleScan, affecting Python and PyTorch, allowed undetected attacks
Revival Hijack Python Package Index supply chain attack threatens 22,000 packages through malicious downloads
According to ReversingLabs this could be the first supply chain attack capitalizing on PYC files
The flaw resides in the tarfile module, automatically installed in any Python project