THREAT OPS › Threat News › TeamPCP Supply Chain Attacks
TeamPCP Supply Chain Attacks
TeamPCP is exploiting trusted npm and PyPI packages to compromise developer environments, steal credentials, and extend attacks across software supply chains.
MITRE ATT&CK techniques
- CredentialsT1589.001
Original source: https://www.intel471.com/blog/teampcp-supply-chain-attacks