THREAT OPS › Threat News › Your Supply Chain Breach Is Someone Else's Payday
Your Supply Chain Breach Is Someone Else's Payday
<div> <div> <div> <ul> <li>TeamPCP exploited a single stolen credential to gain write access to trusted software repositories, inject credential-harvesting malware, and cascade across five ecosystems in five days.</li> <li>Stolen credentials can enable payroll redirection, freight rerouting, and extortion — active campaigns Insikt
Attributed threat actors
MITRE ATT&CK techniques
Indicators of compromise
- https://pypistats.org/packages/litellmurl
- https://checkmarx.com/blog/checkmarx-security-update/url
- https://www.aquasec.com/blog/trivy-supply-chain-attack-what-you-need-to-know/?utm_source=substack&utm_medium=emailurl
- https://www.wiz.io/blog/trivy-compromised-teampcp-supply-chain-attack?utm_source=substack&utm_medium=emailurl
- https://intelligence2risk.substack.com/p/the-bug-that-wont-die-10-years-of?utm_source=substack&utm_medium=emailurl
- https://socradar.io/blog/teampcp-checkmarx-github-actions-attack/?utm_source=substack&utm_medium=emailurl
- https://intelligence2risk.substack.com/p/five-risk-categories?utm_source=substack&utm_medium=emailurl