CHECKMARX disclosed that attackers had compromised a version of KICS, the open source static code analysis project it develops, after broad supply-chain intrusions targeted several of its tools. The attackers infiltrated the KICS GitHub Action used in CI/CD pipelines and poisoned multiple versions, potentially impacting organisations that had the KICS GitHub Action configured during a four-hour window on 23 March.
On the same day, malicious versions of two Checkmarx VS Code plug-ins were published to the OpenVSX registry, available for about three hours. The campaign also spread to PyPI, where Litellm package versions 1.82.7 and 1.82.8 were infected with the same infostealer malware used in the Trivy campaign, according to GitGuardian.
Industry watchers have attributed the attacks to TeamPCP, and Wiz Research suggests the group is collaborating with the LAPSUS$ extortion network to extend its reach across cloud-native and AI toolchains. The operator group’s activity, described as a broader supply chain attack, highlights the importance of rotating credentials and maintaining real-time inventories of compromised secrets in incident response. 24 March 2026.