CVE-2026-33634 is a vulnerability tracked across 5 threat clusters and 5 intelligence report mentions on ThreatCluster. First observed March 27, 2026; most recent activity April 3, 2026.
On March 24, 2026, two malicious versions of the LiteLLM Python package (1.82.7 and 1.82.8) were published on PyPI, containing credential-stealing malware. The attack, attributed to the TeamPCP threat group, exploited…
AI recruiting startup Mercor confirmed it was impacted by a supply chain attack linked to the LiteLLM project, which has affected thousands of organizations. The breach was attributed to the hacking group TeamPCP, with…
Databricks is investigating a potential security compromise linked to the TeamPCP supply chain attack. This incident follows a notification from International Cyber Digest, which indicated that Databricks was alerted…
The European Commission confirmed a cyberattack on March 24, 2026, affecting its cloud infrastructure on the Europa.eu platform. Hackers claimed to have stolen over 350GB of data, including sensitive information related…
TeamPCP, a cybercriminal group, has halted its supply chain attacks for the first time since March 19, 2026. No new compromises have been reported in the last three days, following the malicious release of Telnyx's SDK…