#litellm

[ follow ]
#supply-chain-attack #mercor #data-breach #ai #malware #rate-limiting #docker #lapsus #meta #cybersecurity #open-source
fromSecuritymagazine
4 days ago

AI Startup Mercor, Which Works With Open AI and Anthropic, Confirms Data Breach

Four terabytes of data have reportedly been stolen, including database records and source code. Allegedly stolen data has been published on a leak site, containing Slack information, internal ticketing data, and videos of conversations between Mercor's AI systems and contractors.
Information security
#mercor
fromFortune
4 days ago
Information security

Mercor, a $10 billion AI startup, confirms it was caught up in a major security incident | Fortune

Mercor confirmed a security breach linked to a supply chain attack that may have exposed sensitive data of its customers.
fromTechCrunch
6 days ago
Information security

Mercor says it was hit by cyberattack tied to compromise of open-source LiteLLM project | TechCrunch

Mercor confirmed a security incident linked to a supply chain attack involving LiteLLM, affecting its data and operations.
Information security
fromFortune
4 days ago

Mercor, a $10 billion AI startup, confirms it was caught up in a major security incident | Fortune

Mercor confirmed a security breach linked to a supply chain attack that may have exposed sensitive data of its customers.
Information security
fromTechCrunch
6 days ago

Mercor says it was hit by cyberattack tied to compromise of open-source LiteLLM project | TechCrunch

Mercor confirmed a security incident linked to a supply chain attack involving LiteLLM, affecting its data and operations.
more#mercor
#supply-chain-attack
Information security
fromInfoQ
1 week ago

PyPI Supply Chain Attack Compromises LiteLLM, Enabling the Exfiltration of Sensitive Information

A supply chain attack on LiteLLM led to over 40,000 downloads of a compromised package that harvested sensitive information.
Information security
fromTheregister
1 week ago

LiteLLM infected with credential-stealing code via Trivy

LiteLLM versions v1.82.7 and v1.82.8 were removed from PyPI due to a supply chain attack injecting credential-stealing code.
Information security
fromInfoQ
1 week ago

PyPI Supply Chain Attack Compromises LiteLLM, Enabling the Exfiltration of Sensitive Information

A supply chain attack on LiteLLM led to over 40,000 downloads of a compromised package that harvested sensitive information.
Information security
fromTheregister
1 week ago

LiteLLM infected with credential-stealing code via Trivy

LiteLLM versions v1.82.7 and v1.82.8 were removed from PyPI due to a supply chain attack injecting credential-stealing code.
more#supply-chain-attack
Information security
fromTechCrunch
1 week ago

Popular AI gateway startup LiteLLM ditches controversial startup Delve | TechCrunch

LiteLLM is terminating its relationship with Delve for security certifications after a malware incident and will seek a new compliance auditor.
Silicon Valley
fromTechCrunch
1 week ago

Delve did the security compliance on LiteLLM, an AI project hit by malware | TechCrunch

Malware was discovered in the popular open source project LiteLLM, compromising user credentials and causing significant security concerns.
Information security
fromInfoWorld
1 week ago

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

Compromised LiteLLM packages executed a three-stage payload targeting sensitive data in cloud environments before being removed from PyPI.
#ai
more#ai
[ Load more ]