#TeamPCP isn't slowing down. First #Trivy and #LiteLLM, and now the official #telnyx SDK has been hit with a zero-day that hides its payload inside valid .wav audio frames. 🔇 This confirms my fear: we are in a high-velocity campaign where legacy CVE scanners are fundamentally blind. Practices like version pinning are a critical baseline, but they're an imperfect shield when the threat actors are weaponizing the very context of the packages we trust. We built wtmp to be a flashlight in this pitch-black room. It doesn't just check for "known bad" signatures—it uses LLM analysis to flag nefarious indicators like steganography and unauthorized exfil before they execute. If you’re triaging your environments today, you can grab the CLI and scan your tree here:point-wild.github.io/who-touched-my…z

TeamPCP: The Supply Chain Attack That Shook Open Source #TeamPCP #Trivy... youtu.be/5gl2F31Csgg?si… via @YouTube

TEAMPCP ENVIA VERSÕES MALICIOSAS DO TELNYX PARA PYPI E OCULTA O LADRÃO EM ARQUIVOS WAV samirnews.com/2026/03/teampc… #SamirNews #teampcp #envia #versões #maliciosas #do #telnyx #para #pypi #e #oculta #o #ladrão #em #arquivos #wav

🚨 Dive into the complexities of the #TeamPCP Trivy supply chain attack in@thenewstack's latest article! Understand how vulnerabilities can be exploited and learn strategies to protect your systems. A must-read for security enthusiasts! 🛡️ #CyberSecurity #SupplyChainSecurity #Infosec

#TeamPCP Pushes Malicious #Telnyx Versions to PyPI, Hides Stealer in #WAV Files scyscan.com/news/teampcp-p…

A security scanner was weaponized. #TeamPCP turned 1 token into a multi-ecosystem breach: CI/CD → npm → Docker → GitHub → AI Fix now: ✔️ Pin SHAs ✔️ Audit workflows ✔️ Rotate secrets Modern supply chain attacks are here. 👉 Read the blog:go.sans.org/NSTmlidE

A security scanner was weaponized. #TeamPCP turned 1 token into a multi-ecosystem breach: CI/CD → npm → Docker → GitHub → AI Fix now: ✔️ Pin SHAs ✔️ Audit workflows ✔️ Rotate secrets Modern supply chain attacks are here. 👉 Read the blog:go.sans.org/NSTmlitN

🚨NEW RESEARCH: 33K Exposed LiteLLM Instances, Two C2 Frameworks, One Trojanized PyPI Package On March 24, #TeamPCP trojanized #LiteLLM on PyPI. We're talking about a package with 97 million monthly downloads that acts as a centralized proxy for LLM API keys. One pip install, SSH keys, K8s tokens, and database passwords in a single pass. This is what we found: - 33,688 internet-facing LiteLLM deployments found at scan time -Credential harvesting across 15+ categories: AWS keys, crypto wallets, CI/CD secrets, TLS keys, and more -K8s escalation from a single pod to privileged containers on every node -Dual C2 running AdaptixC2 and Havoc simultaneously for redundancy -Certificate pivoting via certificate reuse uncovered a third server tied to the exfil domain Full teardown with IOCs and HuntSQL queries �hunt.io/blog/33k-expos…3s

The #TeamPCP campaign continues. The telnyx #PyPI package (versions 4.87.1 & 4.87.2) with ~1M monthly downloads was compromised. What's new this time: WAV steganography. The payload hides an XOR-obfuscated binary inside audio frames, downloads it from C2 at import time, and persuild.exe in Startup. Linux/macOS gets a credential harvester with AES-256 + RSA encryption. The attackers even pushed a bugfix release (4.87.2) within hours of 4.87.1 failing due to a casing error. Operational iteration, live. A good reminder of why writing detections around behavioral patterns rather than point-in-time indicators matters. Generic rules from years back still hold against new techniques. Rune AI, our internal LLM analysis layer, surfaces the same verdict for efficient triage. IOCs & analysis: socket.dev/blog/telnyx-py… aikido.dev/blog/telnyx-py…

It’s an everyday thing! 🕺🏻 #TeamPCP strikes again with the WAV/XOR trick. Thanks AikidoDev for promptly noticing M1Z

A new wave of #TeamPCP malware embedded in #telnyx versions 4.87.1 and 4.87.2 on #PyPI. Full analysis is on our blog. If telnyx is in your dependency tree, check your installed version now. ossprey.com/blog/telnyx-py… #SupplyChainSecurity #PyPI #OpenSource

CanisterWorm is a self-replicating npm plague by TeamPCP. It steals dev tokens, poisons libraries, and hides on the Internet Computer. Is your code infected? #CanisterWorm #TeamPCP #npm #SupplyChain #CyberSecurity2026 #Malware #Javascript #DevSecOps meterpreter.org/canisterworm-t…

🚨 Critical Alert: #LiteLLM Supply Chain Poisoning! #TeamPCP hacked into security scanning tool #Trivy, the attackers stole publishing credentials to release malicious versions directly to #𝗣���nsfocusglobal.com/ai-infrastruct…TLaLO

#TeamPCP just partnered with #Vect ransomware. The same group that backdoored $Trivy, hijacked Checkmarx KICS, and trojanized #LiteLLM on PyPI — a package pulled 3.4M times per day — is now feeding 300GB of stolen credentials into a ransomware-as-a-service pipeline. 80-88% tors. We tracked the full campaign across 7 threats on Threadlinqs Intelligence: → .pth file persistence that survives pip uninstall and runs on every Python invocation → 332-line credential harvester sweeping AWS, GCP, Azure, K8s, SSH, npm tokens → Kubernetes lateral movement via privileged pods in kube-system → CanisterWorm — a self-replicating npm worm using blockchain (ICP) as C2 → 60,000+ compromised servers. 85 MITRE techniques. 63 detections written. The IOC correlation alone tells the story — scan.aquasecurtiy.org (the typosquatted domain) links all 7 campaign phases. Same RSA-4096 key. Same tpcp.tar.gz naming. Same kill-switch logic. Full deep dive with enriched IOCs, detection rules (SPL/KQL/Sigma): threadlinqs.com/blog/TL-2026-0…

A single compromised token shouldn’t take down multiple ecosystems. But in the TeamPCP campaign, it did. Defakto CTO Eli Nesterov breaks down why this became a chain reaction defakto.security/blog/chain-rea… #Breach #TeamPCP #Trivy #Secrets

#SupplyChainAttack #TeamPCP #LiteLLM #PyPI #Kubernetes #Backdoor

Another supply chain attack hits home: LiteLLM was compromised by TeamPCP. Learn how a stolen token led to a massive infostealer deployment and what it means for your software. thepixelspulse.com/posts/litellm-… #litellm #teampcp #pypi

Oh my @pcpcats #TeamPCP just shouted a leak about @BMWGroup by Xpl0itrs. All of the PII data is out for chap. This is 🤯4

#SupplyChainAttack #TeamPCP #LiteLLM #Trivy #PyPI #Kubernetes #Backdoor #Infosec

That accusation will be functionally impossible to refute — and it will be used to void the ceasefire and destroy the civilian accommodation faction's credibility at the exact moment they had leverage. Timestamping this now. #TeamPCP #CanisterWorm #Iran #SupplyChain #CyberWarfare