TeamPCP adds Malware to Multiple Microsoft-Linked GitHub Projects (Campaign)
ID: 40aa67ae-ff3f-54c9-a225-4f89a0cffcf2
STIX ID: report--40aa67ae-ff3f-54c9-a225-4f89a0cffcf2
Feed Name: Wiz Cloud Threat Landscape
Date Published: 2026-06-05
Date Updated: 2026-07-02
Author: [email protected] (Wiz Threat Research)
TeamPCP compromised a GitHub account and injected malicious code into at least 42 repositories and 236 branches across Microsoft-linked organizations (Azure, Azure-Samples, Microsoft) on 5 June 2026; the commits occurred between 02:36 and 03:22 UTC and, as of 14:00 UTC, the malicious code remained only in the GitHub repositories and had not been propagated to other distribution channels.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
