In yet another instance of threat actors quickly jumping on the exploitation bandwagon, a newly disclosed critical security flaw in BerriAI's LiteLLM Python package has come under active exploitation ...

The vulnerability allows attackers to read data from a LiteLLM proxy’s database and potentially modify it. A critical-severity vulnerability in the open source AI gateway LiteLLM was exploited days ...

Hackers are targeting sensitive information stored in the LiteLLM open-source large-language model (LLM) gateway by exploiting a critical vulnerability tracked as CVE-2026-42208. The flaw is an SQL ...

Joe Supan is a senior writer for CNET covering home technology, broadband, and moving. Prior to joining CNET, Joe led MyMove's moving coverage and reported on broadband policy, the digital divide, and ...

Contractors said in at least five lawsuits that AI training startup Mercor exposed their data to hackers. Mercor said last week it was "impacted" by compromised LiteLLM software. One of the suits ...

A poisoned LiteLLM update hit Mercor, and Meta pulled the brake. The breach is now a warning flare for AI vendors built on open-source plumbing. Meta has paused work with Mercor after a security ...

Meta has paused its work with Mercor and is investigating after a data breach, a person familiar said. Mercor confirmed to Business Insider that it was recently affected by a security incident. Mercor ...

Meta has paused all its work with the data contracting firm Mercor while it investigates a major security breach that impacted the startup, two sources confirmed to WIRED. The pause is indefinite, the ...

Sophisticated cyberattacks targeting a variety of open source projects, including the Trivy security-scanner project, the widely used Axios Javascript package, and now Anthropic's accidental ...

The AI recruiting firm is investigating the incident as Lapsus$ claimed the theft of 4TB of Mercor data. AI recruiting firm Mercor has disclosed impact from the recent LiteLLM supply chain attack, ...

A platform that helps AI industry leaders improve their models on Wednesday confirmed a security incident tied to a recent supply chain attack. The startup, Mercor, was one of thousands of firms to be ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...