SN 1072: LiteLLM - Click Fix Attacks Surge
Security Now (Audio)
Leo Laporte
4.6 • 2.3K Ratings
🗓️ 31 March 2026
⏱️ 169 minutes
🧾️ Download transcript
Summary
An explosive supply chain hack in Light LLM nearly unleashed catastrophic malware across millions of AI systems, and it took a coder's quick thinking to catch it before it snowballed into disaster.
- Will California require Linux to verify its user's age.
- Apple's iOS 26.4 requires UK users to prove their age.
- Russia chooses to use home grown 5G mobile encryption.
- Ukraine knew the webcam was installed by Russian spies.
- Google moves quantum computing "Q Day" to 2029.
- At RSA, UK's NCSC CEO warns of vibe-coded SaaS replacements.
- More information about nasty ClickFix campaigns.
- More than one in seven Reddit postings are an AI-bot.
- The story behind the LiteLLM disaster that was averted.
Show Notes - https://www.grc.com/sn/SN-1072-Notes.pdf
Hosts: Steve Gibson and Leo Laporte
Download or subscribe to Security Now at https://twit.tv/shows/security-now.
You can submit a question to Security Now at the GRC Feedback Page.
For 16kbps versions, transcripts, and notes (including fixes), visit Steve's site: grc.com, also the home of the best disk maintenance and recovery utility ever written Spinrite 6.
Join Club TWiT for Ad-Free Podcasts!
Support what you love and get ad-free audio and video feeds, a members-only Discord, and exclusive content. Join today: https://twit.tv/clubtwit
Sponsors:
Transcript
Click on a timestamp to play from that location
| 0:00.0 | It's time for security now. Steve Gibson is here with a show about something that should send a chill |
| 0:05.7 | into the heart of every coder. The nightmare Pi-PI exploit, light LLM, will do a kind of deep dive |
| 0:14.4 | onto what happened, how it happened, and what we can do to prevent it in the future. Plus, we'll |
| 0:19.6 | talk about age verification on Linux, |
| 0:22.4 | a good move from Apple on the clicks fix vulnerability. |
| 0:28.7 | And is quantum computing moving closer? |
| 0:32.3 | Steve has thoughts next on Security Now. |
| 0:37.4 | Podcasts you love. |
| 0:39.2 | From people you trust. |
| 0:41.8 | This is Twit. |
| 0:47.0 | This is Security Now with Steve Gibson. |
| 0:49.8 | Episode 172, recorded Tuesday, March 31st, 2026. |
| 0:55.8 | Light LLM. |
| 0:58.1 | It's time for security now. |
| 1:00.2 | I know you wait it all week for Tuesday. |
| 1:02.6 | Best day of the week. |
| 1:04.2 | Leo's back. |
| 1:04.7 | Well, I'm back, but so is Mr. Gibson. |
| 1:07.6 | Steve Gibson's here. |
| 1:08.0 | Micah did a great job last week. |
| 1:10.3 | Thank you, Micah, for filling it for me. Holding the fort down. I was at our sack, the big security conference at San Francisco. I ran into a friend of yours, Marcus Hutchins, the hacker. In fact, I kind of relived old times because I said, yeah, we were when, what was it, Wanna cry that he did? We were following along with what he was |
| 1:30.4 | doing. And then he got, he left Black Hat in Vegas, got picked up by the feds before he could |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Leo Laporte, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Leo Laporte and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.