LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks

News Source : Help Net Security

News Summary

The latest victim of the group is BerryAI’s popular LiteLLM library, a unified interface that makes it easier for apps to switch between various LLMs.
TeamPCP is also believed to have compromised a number of NPM packages, which were equipped with a Python backdoor.
And, according to Aikido researchers, they also deployed a Kubernetes node or local machine wiper when the target is (geo)located in Iran.
Sonatype advises organizations that installed or executed them to identify and remove the malicious package from affected systems.

A slew of supply chain attacks against popular open source tools and packages appears to have been orchestrated by TeamPCP, a cybercriminal group that rose to prominence in late 2025.The latest vic [+3405 chars]

Must read Articles

News image for article LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks

Blue Film star Reed Birney says he was foolish not to expect controversy of agegap movie

News Source : By Jack Wetherill from Thepinknews.com

NCIS 500, Punisher, Doctor Who/Tom Baker & More BCTV Daily Dispatch

News Source : By Ray Flook from Bleeding Cool News

NBA head coach named ideal fit for UNC basketball vacancy

News Source : By Yagya Bhargava from The Big Lead

American League MVP odds before Opening Day

News Source : By Angel Atienza-Romero from The Big Lead

Stephen Colbert to write new Lord of the Rings film after talk show axed

News Source : By Isobel Lewis from The-independent.com

Sony shuts down Dark Outlaw Games and downsizes mobile games development as PlayStation continues to rethink plans

News Source : By Fran Ruiz from Eurogamer.net

Jungle post! New single, album, tour, and side project!

News Source : By waffletaco from Livejournal.com

New TUF A14 Laptop Transformed into a Giant Steam Deck with Powerful iGPU

News Source : By Julian Horsey from Geeky Gadgets

Trump says Iran gave significant gift to prove country wants to make a deal and more top headlines

News Source : By from Fox News

Retirees Trust Our 5 Favorite Strong Buy Safe Monthly Pay HighYield Dividend Stocks

News Source : By Lee Jackson from 24/7 Wall St.

YouTube shows are closing in on traditional TV fast

News Source : By Lucia Moses from Business Insider

Things Are Looking Lukewarm Right Now Marathon Has Reportedly Sold Just 1.2 Million So Far, With Steam Making Up 70% of the Player Base

News Source : By Wesley Yin-Poole from IGN

Inside KiiiKiiis Dreamy, Delulu KPop Universe Something Unfinished, a Little Rough, But Still Joyful

News Source : By Crystal Bell from Teen Vogue

ABC Confirms Whats Replacing The Bachelorette After Season 22 Was Dropped, But I Hope It Changes

News Source : By Laura Hurley from CinemaBlend

Tilray Brands to Announce Third Quarter Fiscal Year 2026 Financial Results on April 1, 2026

News Source : By GlobeNewswire from Financial Post

I didnt realize how much I needed GSync until my TV forced me to turn it off

News Source : By Dave Meikleham from MakeUseOf