Alert: TeamPCP exploits Telnyx services to deploy malware targeting cloud infrastructures. Ensure your APIs and services are secured. #CyberSecurity #CloudSecurity #TeamPCP #Telnyx Link: thedailytechfeed.com/teampcp-expl...
The LiteLLM Supply Chain Attack: How a Security Scanner Became a Backdoor
techlife.blog/posts/litell...
#LiteLLM #SupplyChainAttack #PyPI #Security #Malware #Python #TeamPCP #AISecurity
~Socket~
TeamPCP partnered with Vect ransomware to weaponize OSS supply chain compromises for enterprise attacks.
-
IOCs: TeamPCP, Vect
-
#Ransomware #SupplyChain #TeamPCP #threatintel
Ossprey has detected a new wave of #TeamPCP malware embedded in #telnyx versions 4.87.1 and 4.87.2 on #PyPI.
Full analysis is on our blog.
If telnyx is in your dependency tree, check your installed version now.
ossprey.com/blog/telnyx-...
#SupplyChainSecurity #PyPI #OpenSource #Malware #AppSec
ヒートウェーブのブログを更新しました。
TeamPCPについて
#security #セキュリティ #threat #intelligence #ransomware #supplychain #teampcp
hwdream.com/teampcp/
Another supply chain attack hits home: LiteLLM was compromised by TeamPCP. Learn how a stolen token led to a massive infostealer deployment and what it means for your software.
thepixelspulse.com/posts/litellm-malware-at...
#litellm #teampcp #pypi
Popular #LiteLLM #PyPI package backdoored to steal credentials, auth tokens
www.bleepingcomputer.com/news/security/popular-li...
#cybersecurity #TeamPCP
TeamPCP exploited a pull_request_target workflow in Aqua Trivy to steal an aqua‑bot PAT, rewrite release tags to malicious commits (Trivy v0.69.4–0.69.6) and deploy CanisterWorm using ICP canisters. #TeamPCP #Trivy #CanisterWorm https://bit.ly/4uR5VKt
On March 24, 2026, LiteLLM PyPI releases 1.82.7 and 1.82.8 were compromised, delivering backdoors that harvested credentials and exfiltrated data. The incident ties to a TeamPCP supply chain campaign impacting multiple ecosystems. #SupplyChain #TeamPCP
TeamPCP escalates cyber threats with CanisterWorm, deploying a Kubernetes wiper targeting Iranian systems. Organizations must bolster defenses against this destructive malware. #CyberSecurity #Kubernetes #TeamPCP Link: thedailytechfeed.com/teampcps-kub...
TeamPCP Backdoors LiteLLM via Trivy
Read More: buff.ly/9DwmFvk
#TeamPCP #LiteLLM #Trivy #PyPI #SupplyChainSecurity #KubernetesSecurity #CredentialTheft #DevSecOps
Alert: TeamPCP exploits LiteLLM vulnerabilities to deploy backdoors in cloud systems. Ensure your deployments are secure. #CyberSecurity #CloudSecurity #LiteLLM #TeamPCP Link: thedailytechfeed.com/teampcp-expl...
Self-propagating #malware poisons open source software and wipes #Iran-based machines
arstechnica.com/security/2026/03/self-pr...
#TeamPCP #cybersecurity
#TeamPCP deploys #Iran-targeted wiper in #Kubernetes attacks
www.bleepingcomputer.com/news/security/teampcp-de...
#cybersecurity
TeamPCP injected malicious code into Trivy, Checkmarx tools, and LiteLLM in a supply chain attack designed to steal cloud credentials, tokens, and crypto wallet data.
Read: hackread.com/teampcp-triv...
#CyberSecurity #Malware #TeamPCP #Trivy #Checkmarx #LiteLLM
TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise reconbee.com/teampcp-back...
#TeamPCP #backdoors #CICD #cybersecurity #cyberattack
Nieuwe malware wist data op Iraanse machines
Een nieuwe hackergroep verspreidt gevaarlijke malware via open-source software. De groep heet TeamPCP en is actief sinds december.
#malware #TeamPCP #CanisterWorm
~Socket~
TeamPCP is actively compromising CI/CD pipelines and OSS security tools like Trivy and LiteLLM for mass credential exfiltration.
-
IOCs: CanisterWorm
-
#SupplyChain #TeamPCP #ThreatIntel
TeamPCP Injects Credential Stealer Into Trivy Releases and Spreads to npm via CanisterWorm Group TeamPCP (financially motivated threat actor, reportedly collaborating with LAPSUS$ for extortion; na...
#TeamPCP #Supply #Chain #Attack #CI/CD #Security […]
[Original post on cybersecsentinel.com]
TeamPCP Injects Credential Stealer Into Trivy Releases and Spreads to npm via CanisterWorm Group TeamPCP (financially motivated threat actor, reportedly collaborating with LAPSUS$ for extortion; na...
#TeamPCP #Supply #Chain #Attack #CI/CD #Security […]
[Original post on cybersecsentinel.com]
TeamPCP compromised LiteLLM PyPI package with malicious 1.82.7 & 1.82.8 releases, deploying infostealers that harvest SSH keys, cloud creds, Kubernetes tokens, and more on Python startup. #LiteLLM #PythonAttack #TeamPCP
LiteLLM's latest versions were compromised via its CEO's GitHub, unleashing infostealer malware. This isn't just another supply chain attack; it reveals deeper issues.
thepixelspulse.com/posts/litellm-supply-cha...
#litellm #pypi #teampcp
Teampcp Hacks Checkmarx via Stolen CI
Read More: buff.ly/6nVcv6O
#TeamPCP #Checkmarx #GitHubActions #CICDSecurity #SupplyChainAttack #SecretsTheft #Typosquatting #DevSecOps
Self-propagating malware poisons open source software and wipes Iran-based machines https://arstechni.ca #Security #malware #teampcp #Biz&IT #worm
~Socket~
Compromised Trivy Docker images (0.69.5, 0.69.6) containing TeamPCP infostealer malware were pushed to Docker Hub.
-
IOCs: scan. aquasecurtiy. org
-
#SupplyChain #TeamPCP #Trivy #threatintel
TeamPCP targets Kubernetes clusters by installing the CanisterWorm backdoor on non-Iranian systems and deploying a geopolitically targeted wiper on clusters configured for Iran. Exploits include SSH and Docker API. #TeamPCP #Iran #Kubernetes
TeamPCP deploys Iran-targeted wiper in Kubernetes attacks
www.bleepingcomputer.com/news/securit...
#Infosec #Security #Cybersecurity #CeptBiro #TeamPCP #KubernetesAttacks
TeamPCP hackers breached Aqua Security’s GitHub, injecting infostealer malware into Trivy Docker images (tags 0.69.5 & 0.69.6) via compromised service accounts and CI tokens. Secrets rotated and response ongoing. #TeamPCP #DockerAttack #Israel
winbuzzer.com/2026/03/23/t...
Trivy Breached Twice in a Month via GitHub Actions
#GitHub #GitHubActions #Cybersecurity #Malware #Cybercrime #SecurityBreach #OpenSource #Hackers #npm #Javascript #SoftwareDevelopment #CloudComputing #DataBreaches #Trivy #AquaSecurity #TeamPCP #CanisterWorm
