AI Hacked! LiteLLM COMPROMISED! 97 Million Potentially Exposed
LiteLLM has been compromised in a major supply chain attack affecting an estimated 97 million monthly downloads. Versions 1.82.7 and 1.82.8 on PyPI contain malicious code that steals SSH keys, cloud credentials, API keys, Kubernetes configs, crypto wallets, and environment variables. The malware runs automatically on install (via a .pth file in 1.82.8) or on import (in 1.82.7), encrypts stolen data with AES-256-CBC …