FlareStart
Back to articles
TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials
NewsSecurity

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

via The Hacker Newsinfo@thehackernews.com (The Hacker News)

Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor known as TeamPCP, the cloud-native cybercriminal operation also behind the Trivy supply chain attack. The workflows, both maintained by the supply chain security company Checkmarx, are listed below - checkmarx/ast-github-action checkmarx/kics-github-action Cloud security

Continue reading on The Hacker News

Opens in a new tab

Read Full Article
9 views

Related Articles

News

Slopification and its Discontents

Lobsters1h ago

Instruction Best Practices: Precision Beats Clarity
News

Instruction Best Practices: Precision Beats Clarity

Dev.to1h ago

Spotify’s new SongDNA feature maps how your favorite songs are connected
News

Spotify’s new SongDNA feature maps how your favorite songs are connected

TechCrunch1h ago

Zoox is bringing its robotaxis to Austin and Miami
News

Zoox is bringing its robotaxis to Austin and Miami

The Verge1h ago

Cauldron Ferm has turned microbes into nonstop assembly lines
News

Cauldron Ferm has turned microbes into nonstop assembly lines

TechCrunch1h ago

Discover More Articles