Warning Over “Industrialized” Cyber-Attacks After Ransomware Gang Partners With TeamPCP
ID: 27f57153-4d83-573b-b09e-b305923aa826
STIX ID: report--27f57153-4d83-573b-b09e-b305923aa826
Feed Name: Infosecurity Magazine (News)
Sophos reported that TeamPCP — a group stealing developer credentials and cloud tokens via supply-chain compromises — has partnered with the Vect ransomware group, creating an “industrialized ransomware” model; TeamPCP’s March 2026 compromise of Aqua Security’s Trivy allegedly exposed ~10,000 CI/CD workflows and over 500,000 credentials, and the FBI issued a FLASH warning about TeamPCP’s activity and associated malware families, while researchers confirmed at least one Vect ransomware deployment using TeamPCP-sourced credentials.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
