TeamPCP deploys Iran-targeted wiper in Kubernetes attacks, researchers say

TeamPCP has expanded its cloud-focused malware activity with a new payload that wipes systems when it detects Iran-related settings and backdoors other environments instead. According to Aikido, the malware checks a machine’s timezone and locale, then chooses between destructive wiping and CanisterWorm backdoor deployment. The campaign matters because it goes beyond credential theft or persistence. […] The post TeamPCP deploys Iran-targeted wiper in Kubernetes attacks, researchers say appeared first on VPN Central.