TeamPCP is targeting security tools across the OSS ecosystem, turning scanners and CI pipelines into infostealers to access enterprise secrets.

Socket

TeamPCP, a threat actor group, is running a coordinated campaign targeting security tools and developer infrastructure across the open source ecosystem. After compromising Trivy (a widely used vulnerability scanner), the group has expanded attacks to GitHub Actions, OpenVSX extensions, Checkmarx's KICS scanner, and a trojanized LiteLLM release on PyPI. By infiltrating tools that already run inside CI/CD pipelines and enterprise environments, attackers gain access to credentials, secrets, and infrastructure data from banks, telecoms, and hospitals. The group is openly claiming credit via Telegram and signaling intent to continue large-scale data exfiltration. Organizations using affected tools may have had secrets silently stolen during routine security scans, and the incident response around Trivy has been chaotic. Continuous monitoring of OSS dependencies and CI/CD workflows is strongly recommended.

TeamPCP Is Systematically Targeting Security Tools Across th...