Click here - to use the wp menu builder

LiteLLM Distributes Malware Stealing Crypto Secrets

March 26, 2026

On Mar. 24 an attacker used a compromised maintainer account to publish two malicious LiteLLM releases (1.82.7 and 1.82.8) to PyPI, with 1.82.8 planting a .pth that executed at every Python startup. The payload exfiltrated crypto wallets, Solana validator keys, SSH/cloud credentials, and Kubernetes secrets across 46,996 downloads in 46 minutes; PyPI quarantined the builds and LiteLLM removed them.

BladeOne

Latest articles

OpenClawd Ships Verified Skill Screening After Security Researchers Find 12% of OpenClaw Marketplace Skills Are Malware

How Cybercriminals can use Your Devices to Commit Crime

China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks

How Cybercriminals can use Your Devices to Commit Crime

Iran likely to step up cyber attacks against US civilian infrastructure as desperation grows

How AI-fuelled cyberattacks could drive a new wave of risk clustering

LiteLLM Distributes Malware Stealing Crypto Secrets

OpenClawd Ships Verified Skill Screening After Security Researchers Find 12% of OpenClaw Marketplace Skills Are Malware

A year of open source vulnerability trends: CVEs, advisories, and malware

Pro-Ukraine hacker group Bearlyfy targets Russian companies with custom ransomware

UK’s Co-op warns of weak consumer confidence from geopolitical instability

Panama: Supreme Court ruling against Hong Kong-based firm illustrates vulnerabilities in new geopolitical era and raises expropriation risk

China expects trade momentum to continue despite geopolitical tensions

WSU: Record revenue and EBIT margin in 2025, with positive outlook despite geopolitical risks

The Future of Fintech Innovation Across Global Markets

Global Markets | Mideast worries push Japan’s weekly foreign equity sales to 18-month high

Middle East Tensions Surge, Impacting Global Markets and Oil Prices

European markets head for lower open amid Iran peace talks uncertainty

Joint Operating Committee learns about engineering projects at Jeff Tech

Championing innovation: Bedfont® Scientific CTO shortlisted for Technology Leader of the Year

MG to bring semi-solid-state batteries to Europe, targeting budget EV buyers

Tiny LED design could power next-generation technology

Ontario to unveil budget against backdrop of trade wars and global conflicts

Logical Take: Is India Prepared for a Multi-Layered Crisis Driven by Global Conflicts and Energy Shocks

How global conflicts are rewriting the economic playbook of Kenya

Global Power Shifts: Reforms, Conflicts, and Diplomacy in a Changing World

LiteLLM Distributes Malware Stealing Crypto Secrets

China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks

How Cybercriminals can use Your Devices to Commit Crime

OpenClawd Ships Verified Skill Screening After Security Researchers Find 12% of OpenClaw Marketplace Skills Are Malware

A year of open source vulnerability trends: CVEs, advisories, and malware