Cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of credential-harvesting malware to thousands of AI developers.

Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens

The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of ...
The Hacker News

TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise

Malicious LiteLLM 1.82.7–1.82.8 via Trivy compromise deploys backdoor and steals credentials, enabling Kubernetes-wide persistence and lateral spread.
Visual Studio Magazine

Semantic Kernel (AI LLM Integration) Gets VS Code Tools, Python Support

Microsoft has been busy updating its recently open sourced internal incubation project called Semantic Kernel, an SDK that lets developers mix conventional programming languages with the latest in ...
BBC

Mitigating LLM hallucinations in text summarisation

I'm excited! After weeks of trying to get an LLM to output reliable, useful summaries of research interview transcripts, I've hit on something that works. This is a post about the journey to get here, ...
Forbes

From Generalist To Specialist: The Role Of SFT In LLM Evolution

In the race to unlock the potential of large language models (LLMs), the AI industry is no longer satisfied with LLMs that demonstrate broad knowledge. Accuracy and relevance in niche domains are the ...