TeamPCP Compromises LiteLLM Library in Supply Chain Attack

The threat actor TeamPCP compromised versions 1.82.7 and 1.82.8 of LiteLLM, a widely used library with over 95 million monthly downloads that enables developers to route LLM requests via a unified API. The malicious versions were backdoored, likely through a breach in the Trivy CI/CD pipeline, introducing tools to steal credentials, move laterally within Kubernetes environments, and maintain persistent access. No specific dates or CVE IDs were disclosed in the report. The attack represents a supply chain compromise targeting developers and organizations relying on LiteLLM for AI model integration. The impacted versions have since been identified and removed from distribution channels.