Popular AI tool LiteLLM hit by malware just as its auditor Delve faces credibility crisis in Silicon Valley’s latest chaos
Silicon Valley: Two big tech stories crashed together this week. LiteLLM, a popular AI helper software, got infected with bad software that steals passwords.
The malware came from code LiteLLM used from other projects. It took login information and used it to grab more passwords. A security researcher finding the problem had his computer shut down because the malware was poorly made.
People noticed something strange about LiteLLM. The company still shows it has security approvals on its website. But those approvals came from Delve, a startup now being accused of giving fake security checks.
Security approvals show companies have good safety rules. But they don’t stop all problems. Even with good rules, bad software can still get in. The people running LiteLLM say they are working with security experts to fix everything.
The CEO said they will share what they learned with other developers later. For now, they are busy cleaning up after the attack and looking at what happened.