TeamPCP Hackers Abuse CI/CD Pipelines to Steal Developer and Cloud Credentials

TeamPCP is using trusted CI/CD pipelines, developer tools, and open-source release workflows to steal credentials from cloud and software environments at scale. Trend Micro’s latest research links the April 22 Checkmarx KICS incident and the April 24 elementary-data compromise to a broader TeamPCP supply chain campaign. The attacks show how a single poisoned build step […] The post TeamPCP Hackers Abuse CI/CD Pipelines to Steal Developer and Cloud Credentials appeared first on VPN Central.