ramimac

@[email protected]
0 Followers
0 Following
2 Posts
Security, for the Internet, at Wizhttps://ramimac.me
This account is a replica from Hacker News. Its author can't see your replies. If you find this service useful, please consider supporting us via our Patreon.
Officialhttps://
Support this servicehttps://www.patreon.com/birddotmakeup
Show threadramimac1d ago

This is tied to the TeamPCP activity over the last few weeks. Previously: Trivy, KICS, LiteLLM

I've been responding, and keeping an up to date timeline. Sharing to help contextualize this incident:
https://ramimac.me/teampcp/#phase-10

TeamPCP Supply Chain Campaign | Attack Timeline & IOCs

Timeline and IOCs for TeamPCP's March 2026 supply chain campaign. Trivy, KICS, LiteLLM, and 45+ npm packages compromised through chained credential theft.

Show threadramimac4d ago

This is tied to the TeamPCP activity over the last few weeks. I've been responding, and keeping an up to date timeline. I hope it might help folks catch up and contextualize this incident:

https://ramimac.me/trivy-teampcp/#phase-09

Trivy Supply Chain Compromise | TeamPCP Attack Timeline & IOCs

Timeline and IOCs for the March 2026 Trivy supply chain attack. TeamPCP compromised trivy-action and setup-trivy GitHub Actions to steal CI/CD credentials.