THREATNOIR
Subscribe
Back to Feed
Supply ChainApr 22, 2026

SentinelOne's Autonomous Security Intelligence (ASI) flagged the execution pattern, not a known s...

SentinelOne's ASI detected malicious packages in LiteLLM, Axios, and CPU-Z supply chain attack.

Read at source

Summary

SentinelOne's Autonomous Security Intelligence (ASI) detected and terminated a supply chain attack targeting popular open-source packages including LiteLLM, Axios, and CPU-Z. The attack was identified through behavioral pattern recognition rather than signature-based detection, with malicious events terminated in under 44 seconds for LiteLLM and 89 seconds after Axios package deployment. This incident highlights the effectiveness of behavioral threat detection in identifying novel supply chain compromises.

Indicators of Compromise

  • malware — LiteLLM malicious package
  • malware — Axios malicious package
  • malware — CPU-Z malicious package

Entities

SentinelOne (vendor)LiteLLM (product)Axios (product)CPU-Z (product)Autonomous Security Intelligence (ASI) (technology)