Threat actor
TeamPCP
Tracked by CyberSIXT since Apr 22, 2026 · last activity Jul 4, 2026
Linked incidents
Associated CVEs
Coverage timeline
-
FBI warns TeamPCP hijacks dev tools to steal cloud credentialssecurityaffairs.com · Jul 4, 2026
-
FBI Warns TeamPCP Supply Chain Hack Hits Trivy, KICS Toolssecurityonline.info · Jul 4, 2026
-
GitHub ignores alerts on ShaiHulud worm threatening dev supplydatabreaches.net · Jun 17, 2026
-
Supply chain malware Shai-Hulud targets NPM and PyPI packageswww.securityweek.com · Jun 9, 2026
-
Bulletproof Hosts Drive Global Phishing Targeting Finance, Energysecurityonline.info · May 30, 2026
-
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Reposwww.darkreading.com · May 26, 2026
-
The Hackers Behind Shai-Hulud: Lucky or Skilled?www.darkreading.com · May 26, 2026
-
TeamPCP supply chain attack hits VS Code, Microsoft SDK, npmisc.sans.edu · May 25, 2026
-
VS Code Extension Hackisc.sans.edu · May 25, 2026
-
TeamPCP infiltrates VSCode extension compromising 4,000 reposarstechnica.com · May 22, 2026
-
Malicious Nx Console VS Code Extension Leaks 3800 GitHub Reposwww.infosecurity-magazine.com · May 21, 2026
-
GitHub Hit by Data Theft After VS Code Extension Compromisewww.darkreading.com · May 20, 2026
-
GitHub Breach Exposes 3,800 Repos After VS Code Extension Attackwww.infosecurity-magazine.com · May 20, 2026
-
GitHub Confirms Hack Impacting 3,800 Internal Repositorieswww.securityweek.com · May 20, 2026
-
Malicious VS Code Extension Compromises GitHub Internal Repossecurityaffairs.com · May 20, 2026
-
TeamPCP GitHub Breach: Internal GitHub Repositories Allegedly Accessedsocradar.io · May 20, 2026
-
Grafana breach confined to GitHub, no customer impactthehackernews.com · May 20, 2026
-
GitHub probing after threat actor offers internal repos for salethehackernews.com · May 20, 2026
-
Jenkins AST plugin trojanised as Mini Shai Hulud worm floods npmisc.sans.edu · May 18, 2026
-
TeamPCP leaks Shai Hulud worm, fuels NPM supply chain attackswww.darkreading.com · May 18, 2026
-
StepSecurity's Secure Registry blocks npm worm Mini Shai Huludwww.stepsecurity.io · May 18, 2026
-
Attackers hit OpenAI with malicious TanStack supply chain breachsecurityaffairs.com · May 16, 2026
-
OpenAI staff devices compromised in TanStack supply chain breachwww.securityweek.com · May 15, 2026
-
RubyGems pauses signups after massive malicious package attackthehackernews.com · May 12, 2026
-
TeamPCP’s Mini ShaiHulud supply chain attack hits 170+ packageswww.securityweek.com · May 12, 2026
-
Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packagesthehackernews.com · May 12, 2026
-
TeamPCP Tweaks Checkmarx Jenkins Plugin After KICS Attackthehackernews.com · May 11, 2026
-
InvisiRisk BAF Stops SolarWinds‑Style Supply‑Chain Attackswww.securityweek.com · May 11, 2026
-
Malicious Checkmarx Jenkins Plugin Found in Supply Chain Attackwww.securityweek.com · May 11, 2026
-
TeamPCP backdoors Checkmarx Jenkins plugin with Dune Shai Huludsocradar.io · May 11, 2026