Hackers vs. Hackers: New Campaign Displaces TeamPCP

Colleagues, please note: an unusual campaign has been identified in cyber security where one threat actor group is ousting another.
• SentinelOne has observed the "PCPJack" campaign: attackers are displacing TeamPCP and removing their tooling.
• The newcomers deploy self-propagating code, steal credentials, and exfiltrate them to their infrastructure for monetization.
• They scan cloud services (Docker, MongoDB, etc.) but concentrate on traces left by TeamPCP.
Why it matters: it underscores increasing attack sophistication and the risks to already-compromised environments.
Do you think organizations have the means to detect such rapid changes in active adversaries?
#cybersecurity #incidents #cloudsecurity #threats


Latest comments
No comments yet.