https://ramimac.me/teampcp/ New victims in the TeamPCP supply chain attack campaign. Subscribe to be notified when a new organization is compromised. en-us Mon, 12 May 2026 08:20:00 +0000 https://ramimac.me/teampcp/#mini-shai-hulud-2 https://ramimac.me/teampcp/#mini-shai-hulud-2 Sun, 11 May 2026 00:00:00 +0000 TanStack (@tanstack/react-router, 12M weekly downloads) compromised via GitHub Actions pull_request_target + cache poisoning + OIDC token extraction from /proc/mem. UiPath, Mistral AI (npm + PyPI), and guardrails-ai also hit. https://ramimac.me/teampcp/#checkmarx-jenkins https://ramimac.me/teampcp/#checkmarx-jenkins Fri, 09 May 2026 00:00:00 +0000 TeamPCP exploited persistent access to Checkmarx Jenkins AST plugin (~500 install base). Malicious plugin injected via rotating dead-drop repos, exfiltrating pipeline secrets. https://ramimac.me/teampcp/#mini-shai-hulud https://ramimac.me/teampcp/#mini-shai-hulud Tue, 29 Apr 2026 00:00:00 +0000 Cross-ecosystem attack spanning npm (SAP packages, intercom-client), PyPI (lightning), and Packagist (intercom-php) within 24 hours. Targets Claude Code IDE hooks. Russian locale exit condition. https://ramimac.me/teampcp/#xinference https://ramimac.me/teampcp/#xinference Wed, 22 Apr 2026 00:00:00 +0000 Versions 2.6.0-2.6.2 contained credential stealer with TeamPCP marker. ~600k downloads. TeamPCP denied involvement, claiming copycat. https://ramimac.me/teampcp/#bitwarden https://ramimac.me/teampcp/#bitwarden Wed, 22 Apr 2026 00:00:00 +0000 Cascading compromise from KICS Docker Hub. @bitwarden/cli@2026.4.0 published with 11.7 MB obfuscated payload. 334 downloads in 93-minute window. https://ramimac.me/teampcp/#kics-docker https://ramimac.me/teampcp/#kics-docker Wed, 22 Apr 2026 00:00:00 +0000 Second compromise wave despite Mar 23 remediation. Malicious images pushed to Docker Hub (~1.5hr exposure). Cascaded to Bitwarden CLI. Mandiant retained. https://ramimac.me/teampcp/#canistersprawl https://ramimac.me/teampcp/#canistersprawl Tue, 21 Apr 2026 00:00:00 +0000 Second npm worm wave. @fairwords precursor (Apr 8), main wave (Apr 21-22) across @automagik, @openwebconcept, pgserve. New ICP canister C2. https://ramimac.me/teampcp/#telnyx https://ramimac.me/teampcp/#telnyx Fri, 27 Mar 2026 00:00:00 +0000 PyPI credentials compromised. Versions 4.87.1 and 4.87.2 contained WAV steganography payloads for Windows and Linux. ~4 hour exposure window before quarantine. https://ramimac.me/teampcp/#litellm https://ramimac.me/teampcp/#litellm Tue, 24 Mar 2026 00:00:00 +0000 PyPI token harvested via Trivy in CI/CD. Versions 1.82.7 and 1.82.8 contained credential-stealing payloads with persistence. Attacker claimed 54GB stolen via vxunderground. https://ramimac.me/teampcp/#checkmarx https://ramimac.me/teampcp/#checkmarx Mon, 23 Mar 2026 00:00:00 +0000 OpenVSX extensions and GitHub Actions hijacked via compromised service account. All 35 KICS tags and 91 AST tags force-pushed to malicious commits. C2 at checkmarx.zone. https://ramimac.me/teampcp/#canisterworm https://ramimac.me/teampcp/#canisterworm Fri, 20 Mar 2026 00:00:00 +0000 Self-propagating worm deployed via stolen npm tokens. ICP canister C2. 28+ packages infected in under 60 seconds across @EmilGroup, @opengov, @teale.io, @airtm, @pypestream. 135+ malicious artifacts across 64+ packages. https://ramimac.me/teampcp/#trivy https://ramimac.me/teampcp/#trivy Thu, 19 Mar 2026 00:00:00 +0000 Initial compromise via incomplete containment of Mar 1 PwnRequest. 75 of 76 tags hijacked. Malicious binaries published to GitHub Releases, Docker Hub, and npm (via CanisterWorm).