Slowmist Chief Information Security Officer 23pds posted on X, stating that LiteLLM, a Python AI gateway library with monthly downloads reaching 97 million, has been targeted by a PyPI supply chain attack. Attackers can steal sensitive information on user devices through the "pip install litellm" command. The sensitive data that can be stolen includes: SSH keys, cloud service credentials (AWS / GCP / Azure), Kubernetes configuration files, Git credentials, API keys in environment variables, shell history, cryptocurrency wallet information, and database passwords, among others.
Slowmist Chief Information Security Officer 23pds posted on X, stating that LiteLLM, a Python AI gateway library with monthly downloads reaching 97 million, has been targeted by a PyPI supply chain attack. Attackers can steal sensitive information on user devices through the "pip install litellm" command. The sensitive data that can be stolen includes: SSH keys, cloud service credentials (AWS / GCP / Azure), Kubernetes configuration files, Git credentials, API keys in environment variables, shell history, cryptocurrency wallet information, and database passwords, among others.