Attention: You are using an outdated browser, device or you do not have the latest version of JavaScript downloaded and so this website may not work as expected. Please download the latest software or switch device to avoid further issues.

Noticias > Attacks & Threats > TeamPCP Breaches Cloud, SaaS Instances With Stolen Credentials

TeamPCP Breaches Cloud, SaaS Instances With Stolen Credentials

The threat group's shift to speedy attacks on AWS, Azure, and SaaS instances shows organizations need to respond quickly to compromised credentials.
1 Apr 2026
Written by Gabi Gerber
Attacks & Threats

Featured

Security Operation Center, Hacking Topics

TeamPCP is weaponizing the fruits of its extensive supply chain attacks, using stolen credentials to access cloud and software-as-a-service (SaaS) environments.

The threat group this month compromised several open source software projects, starting with Trivy, an Aqua Security-maintained security scanner, and KICS, a Checkmarx-developed tool for static code analysis. More recently, TeamPCP actors hit LiteLLM, an open source Python library, and the PyPi package of Telnyx, which developers use for voice AI agents. More here

Similar Stories

Attacks & Threats

Bad Memories Still Haunt AI Agents

Cisco found and fixed a significant vulnerability in the way Anthropic handles memories, but experts warn that mishandled memory files will continue to threaten AI systems. More...
Every Old Vulnerability Is Now an AI Vulnerability

AI's danger isn't that it's creating new bugs, it's that it's amplifying old ones. More...
Google Fixes Critical RCE Flaw in AI-Based 'Antigravity' Tool

The prompt-injection vulnerability in the agentic AI product for filesystem operations was a sanitization issue that all… More...
Grafana AI Bug Leaks Data With Zero-Click Exploit

Chained Bypasses Exfiltrate Data Via Hidden AI Prompts More...
Critical MCP Integration Flaw Puts NGINX at Risk

Attackers can abuse the near-maximum severity flaw in nginx-ui to restart, create, modify, and delete NGINX configuratio… More...

Have your say

 

News Categories

Attacks & Threats

Bad Memories Still Haunt AI Agents

Cisco found and fixed a significant vulnerability in the way Anthropic handles memories, but experts warn that mishandled memory files will continue to threaten AI systems. More...
Every Old Vulnerability Is Now an AI Vulnerability

AI's danger isn't that it's creating new bugs, it's that it's amplifying old ones. More...
Google Fixes Critical RCE Flaw in AI-Based 'Antigravity' Tool

The prompt-injection vulnerability in the agentic AI product for filesystem operations was a sanitization issue that all… More...
Grafana AI Bug Leaks Data With Zero-Click Exploit

Chained Bypasses Exfiltrate Data Via Hidden AI Prompts More...
Critical MCP Integration Flaw Puts NGINX at Risk

Attackers can abuse the near-maximum severity flaw in nginx-ui to restart, create, modify, and delete NGINX configuratio… More...

Show more
image

SANTIAGO
Diagonal las Torres 2640, Peñalolén.
Av. Presidente Errázuriz 3485, Las Condes.
Av. Santa María 5870, Vitacura.
VIÑA DEL MAR
Padre Hurtado 750, Viña del Mar.

image
This website is powered by
ToucanTech