🚀 DuckDB NPM Account Compromised, Malicious Versions Released
#DuckDB #NPM #AccountCompromised #MaliciousVersions #DuckDBWasm #WalletStealing #SupplyChainAttack #Cybersecurity #PANews #SlowMist
According to PANews, SlowMist Technology's Chief Information Security Officer, 23pds, announced on the X platform that the DuckDB NPM account has been compromised. Early this morning, malicious versions such as duckdb and duckdb-wasm were released. These malicious software versions align with the wallet-stealing malware identified in yesterday's supply chain attack. Users are advised to exercise caution and implement risk prevention measures.#DuckDB #NPM #AccountCompromised #MaliciousVersions #DuckDBWasm #WalletStealing #SupplyChainAttack #Cybersecurity #PANews #SlowMist
🚀 Malicious LiteLLM Versions on PyPI Downloaded Nearly 47,000 Times in 46 Minutes
#LiteLLM #PyPI #MaliciousVersions #CyberAttack #NS3AI #FutureSearch #PythonSecurity #WalletFiles #Solana #CloudCredentials #TransitiveDependencies #SecurityThreat
Attackers released two harmful versions of LiteLLM on the Python Package Index (PyPI) on March 24. According to NS3.AI, FutureSearch reported that these versions were downloaded 46,996 times within just 46 minutes. Version 1.82.8 included a .pth file that executed with every Python startup. The payload was designed to search for wallet files, Solana validator data, and cloud credentials. LiteLLM advised that installations made during this period, which involved unpinned transitive dependencies, should be considered potentially compromised.#LiteLLM #PyPI #MaliciousVersions #CyberAttack #NS3AI #FutureSearch #PythonSecurity #WalletFiles #Solana #CloudCredentials #TransitiveDependencies #SecurityThreat