Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • World
  • Users
  • Groups
Skins
  • Light
  • Brite
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (Cyborg)
  • No Skin
Collapse
Brand Logo

CIRCLE WITH A DOT
  1. Home
  2. Uncategorized
  3. Wow, TeamPCP is hacking open-source developers faster than we can report on them.

Wow, TeamPCP is hacking open-source developers faster than we can report on them.

Scheduled Pinned Locked Moved Uncategorized
2 Posts 1 Posters 0 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • dangoodin@infosec.exchangeD This user is from outside of this forum
    dangoodin@infosec.exchangeD This user is from outside of this forum
    dangoodin@infosec.exchange
    wrote last edited by
    #1

    Wow, TeamPCP is hacking open-source developers faster than we can report on them. The latest (that I'm aware of, anyway) is LiteLLM. They worked with Trivy but didn't bother to change their credentials after Trivy was hacked, despite an ample amount of advice to do so.

    Folks, if any of you used LiteLLM, now is the time to change your credentials, at an atomic level. Now, as in immediately.

    Link Preview Image
    Malicious litellm_init.pth in litellm 1.82.8 PyPI package – credential stealer | Hacker News

    favicon

    (news.ycombinator.com)

    dangoodin@infosec.exchangeD 1 Reply Last reply
    2
    0
    • dangoodin@infosec.exchangeD dangoodin@infosec.exchange

      Wow, TeamPCP is hacking open-source developers faster than we can report on them. The latest (that I'm aware of, anyway) is LiteLLM. They worked with Trivy but didn't bother to change their credentials after Trivy was hacked, despite an ample amount of advice to do so.

      Folks, if any of you used LiteLLM, now is the time to change your credentials, at an atomic level. Now, as in immediately.

      Link Preview Image
      Malicious litellm_init.pth in litellm 1.82.8 PyPI package – credential stealer | Hacker News

      favicon

      (news.ycombinator.com)

      dangoodin@infosec.exchangeD This user is from outside of this forum
      dangoodin@infosec.exchangeD This user is from outside of this forum
      dangoodin@infosec.exchange
      wrote last edited by
      #2

      For context, please see:

      Link Preview Image
      Self-propagating malware poisons open source software and wipes Iran-based machines

      Development houses: It's time to check your networks for infections.

      favicon

      Ars Technica (arstechnica.com)

      1 Reply Last reply
      0
      • R relay@relay.infosec.exchange shared this topic
        R relay@relay.an.exchange shared this topic
      Reply
      • Reply as topic
      Log in to reply
      • Oldest to Newest
      • Newest to Oldest
      • Most Votes

      • Login
      • Login or register to search.
      • First post
        Last post
      0
      • Categories
      • Recent
      • Tags
      • Popular
      • World
      • Users
      • Groups