The Hacker News

LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure

CVE-2026-42208 exploited within 36 hours of disclosure, exposing LiteLLM credentials, risking cloud account compromise.
Moneyweb

New bank takes swift action after GroundUp alerts it to data breach

A new bank, eNL Mutual (previously YWBN), took swift action to plug a data breach after an IT consultant contracted to ...

Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw

Hackers are targeting sensitive information stored in the LiteLLM open-source large-language model (LLM) gateway by ...
SecurityWeek

Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak

Medtronic has confirmed that its systems have been hacked after the notorious ShinyHunters group claimed to have stolen ...
SecurityWeek

Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure

Hackers rushed to target a critical LiteLLM SQL injection flaw to steal keys, credentials, and environment-variable ...

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...