Gallery

Contacts

405 W. Greenlawn Ave Lansing, Michigan 48910

contact@techjacksolutions.com

+1-616-320-4064

A threat actor group tracked as TeamPCP is conducting an active, systematic supply chain campaign targeting developer tools and security scanners distributed through PyPI and related package ecosystems. Confirmed compromised packages include LiteLLM and the Telnyx Python SDK, with the attack chain extending to security scanning tools Trivy and KICS, meaning the tools developers use to verify safety were themselves weaponized. The campaign is designed to steal cloud credentials, SSH keys, Kubernetes secrets, and corporate access tokens from developer environments and CI/CD pipelines, creating direct pathways to cloud infrastructure, source code repositories, and production systems.

Author

Tech Jacks Solutions