Hackers hack victims hacked by other hackers

PCPJack is an active cybercrime campaign discovered by SentinelOne in which an unknown group takes over systems already compromised by the TeamPCP criminal group, removes TeamPCP tooling, and deploys self-spreading code to harvest credentials and exfiltrate data. The operators focus on monetization—reselling credentials, selling initial access, and extortion—while targeting cloud infrastructure (Docker, MongoDB) and using phishing domains and fake helpdesk pages to harvest password-manager and other credentials.