New Threat Campaign Targets TeamPCP Victims: Insights from Security Researchers
In a recent development within the cybersecurity landscape, researchers have uncovered an alarming new threat campaign specifically aimed at individuals and organizations associated with the notorious cybercrime group, TeamPCP. The framework, dubbed PCPJack, has garnered significant attention for its sophisticated approach to credential theft and its ability to navigate through vulnerable cloud infrastructures.
PCPJack operates by infiltrating exposed cloud environments and methodically erasing any traces linked to TeamPCP. This information was shared by Alex Delamotte, a Senior Threat Researcher at SentinelOne. According to Delamotte, the framework is designed not only to steal sensitive credentials but also to replicate itself throughout the victim’s cloud infrastructure. This methodology echoes previous campaigns conducted by TeamPCP, including notable incidents that occurred in late 2025. During that period, the early iterations of TeamPCP’s strategies were less conspicuous but have evolved over time to become more aggressive and visible, drawing the attention of cybersecurity professionals and prompting changes in the group’s operational dynamics.
TeamPCP is infamous for orchestrating several major open-source supply chain attacks in 2026, one of which involved compromising GitHub Actions linked to Aqua Security’s popular Trivy vulnerability scanner. This breach resulted in the widespread distribution of infostealer malware, impacting numerous downstream users, highlighting the extensive reach and potential consequences of their operations.
Delamotte noted that the services targeted by PCPJack closely resemble those previously subjected to TeamPCP’s campaigns. "We believe this could be a former operator who is deeply familiar with the group’s tooling," Delamotte explained in a post on SentinelLABS. This insight suggests that the architect behind PCPJack possesses critical insights into TeamPCP’s methods, potentially enabling them to exploit existing vulnerabilities more effectively than outsiders.
The PCPJack framework’s operational protocol involves not only the deletion of artifacts linked to TeamPCP but also the deployment of malicious code designed to propagate through a victim’s cloud systems. This malicious code is engineered to siphon off credentials from an array of services, including Docker, Kubernetes, Redis, MongoDB, and RayML. The report further clarifies that while PCPJack is programmed to steal cryptocurrency credentials, it deliberately lacks cryptocurrency mining functionalities. Unlike many other cloud threat campaigns that deploy mining tools like XMRig, PCPJack notably avoids this strategy. Delamotte emphasized that this absence indicates a distinct goal; rather than mining cryptocurrencies, the primary objective appears to focus on monetization through avenues such as credential theft, fraud, spam, extortion, or the resale of compromised access.
To mitigate the risks associated with PCPJack-style attacks, SentinelOne has urged organizations to adopt robust security measures tailored for cloud and web applications. These best practices include:
-
Utilizing a Credential Vault: Organizations are strongly advised to implement an enterprise-wide secrets management service.
-
Avoiding Clear Text Storage: Access to credential vaults should never be stored in files saved as clear text to maintain security.
-
Employing Multi-Factor Authentication (MFA): For service accounts, requiring MFA rather than solely relying on API keys adds an additional layer of security.
-
Enforcing IMDSV2: In Amazon Web Services (AWS) environments, it is crucial to ensure that Instance Metadata Service Version 2 (IMDSV2) is enforced across all services to strengthen credential security.
-
Allow-listing Downloads: Only downloads from approved Amazon S3 resources should be permitted to mitigate the risk of unauthorized access.
-
Implementing Authentication for Docker and Kubernetes: Authenticating these services, even if they are not exposed to the internet, is vital, as they remain popular targets for lateral movement within cloud environments.
- Applying the Principle of Least Privilege: Organizations should enforce the principle of least privilege across Kubernetes service accounts to limit access risks.
Delamotte concluded by warning that the ramifications of attacks by PCPJack and similar toolsets could range from data exposure and extortion to severe financial impacts, especially when an attacker gains access to high-limit enterprise Application Programming Interfaces (APIs). The implications of these cyber threats emphasize the urgent need for organizations to remain vigilant and proactive in their protective measures. As the cybersecurity landscape continues to evolve, the emergence of frameworks like PCPJack serves as a reminder of the persistent risks that organizations face and the necessity for ongoing vigilance and adaptation in security practices.