TeamPCP Breaches Checkmarx Jenkins Plugin Again

If you're using the Checkmarx Jenkins AST plugin, make sure you're on a safe footing by using version 2.0.13-829.vc72453fa_1c16 or earlier, published on December 17, 2025, as newer versions may be vulnerable. Checkmarx has since released a patched version, 2.0.13-848.v76e89de8a_053, available on GitHub and the Jenkins Marketplace.

https://osintsights.com/teampcp-breaches-checkmarx-jenkins-plugin-again?utm_source=mastodon&utm_medium=social

#Checkmarx #JenkinsPlugin #SupplyChain #Vulnerability #EmergingThreats

Checkmarx Disrupts TeamPCP Intrusion via Sabotaged Jenkins Plugin

Checkmarx sprang into action to stop a TeamPCP intrusion after a Jenkins plugin was sabotaged, ruining engineers' weekend plans with a Saturday attack. The swift response thwarted another attempted breach by the same cyber actor.

https://osintsights.com/checkmarx-disrupts-teampcp-intrusion-via-sabotaged-jenkins-plugin?utm_source=mastodon&utm_medium=social

#Teampcp #JenkinsPlugin #Sabotage #Intrusion #EmergingThreats