Threat actor
TeamPCP
Tracked by CyberSIXT since Mar 31, 2026 · last activity Apr 6, 2026
Linked incidents
Coverage timeline
-
LiteLLM supply chain attack steals developer credentials globallythehackernews.com · Apr 6, 2026
-
European Commission hit by 340GB data breach via AWS Europa hackwww.securityweek.com · Apr 4, 2026
-
EU Commission breach exposes 30 entities' data via Trivy flawsecurityaffairs.com · Apr 4, 2026
-
Attackers breach EU Commission site via Trivy supply chain attackdatabreaches.net · Apr 3, 2026
-
TeamPCP supply chain breach hits Mercor and EU Commission cloudswww.darkreading.com · Apr 3, 2026
-
Weaponizing the Protectors: TeamPCP’s Multi-Stage Supply Chain Attack on Security Infrastructureunit42.paloaltonetworks.com · Mar 31, 2026
-
TeamPCP Breaches Cloud, SaaS Instances With Stolen Credentialswww.darkreading.com · Mar 31, 2026
-
TeamPCP Moves From OSS to AWS Environmentswww.securityweek.com · Mar 31, 2026
-
TeamPCP Explores Ways to Exploit Stolen Supply Chain Secretswww.infosecurity-magazine.com · Mar 31, 2026