Skip to main content
Login
institutional access

You are connecting from
Lake Geneva Public Library,
please login or register to take advantage of your institution's Ground News Plan.

Published loading...Updated

Worm Rubs Out Competitor's Malware, Then Takes Control

Summary by The Register
There’s a mysterious framework worming its way through exposed cloud instances removing all traces of TeamPCP infections, but it’s not benevolent by a long shot: Whoever is behind this bit of malware may be cleaning up who came before, but only so they can take their place. Discovered by security outfit SentinelOne’s SentinelLabs researchers and dubbed PCPJack for its habit of stealing previously compromised systems from TeamPCP, the worm was fi…

9 Articles

The RegisterThe Register
Center

Worm rubs out competitor's malware, then takes control

There’s a mysterious framework worming its way through exposed cloud instances removing all traces of TeamPCP infections, but it’s not benevolent by a long shot: Whoever is behind this bit of malware may be cleaning up who came before, but only so they can take their place. Discovered by security outfit SentinelOne’s SentinelLabs researchers and dubbed PCPJack for its habit of stealing previously compromised systems from TeamPCP, the worm was fi…

Read Full Article
BleepingComputerBleepingComputer
Center

New PCPJack worm steals credentials, cleans TeamPCP infections

A new malware framework called PCPJack is stealing credentials from exposed cloud infrastructure while actively removing TeamPCP's access to the systems.

Read Full Article
securityweek.comsecurityweek.com

‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials

The malware framework targets web applications and cloud environments, including AWS, Docker, Kubernetes, and more. The post ‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials appeared first on SecurityWeek.

Read Full Article
iTnewsiTnews

'PCPJack' cloud worm hijacks TeamPCP hacker infrastructure

Unknown threat actor's malware steals credentials.

Read Full Article
coinstats.appcoinstats.app

CoinStats - Hackers Expel TeamPCP From Trading systems...

A new cyberattack campaign detected by SentinelOne reveals an unusual pattern: hackers break into systems already compromised by TeamPCP, expel the rival group, and reuse that access to steal credentials, spread malware in the cloud, and monetize the stolen data. SentinelOne identified a campaign called PCPJack that targets systems already compromised by TeamPCP. The attackers remove tools from the previous group, deploy self-replicating code, …

Read Full Article
The Hacker NewsThe Hacker News
Reposted by
cybernoz.comcybernoz.com

PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems

Cybersecurity researchers have disclosed details of a new credential theft framework dubbed PCPJack that targets exposed cloud infrastructure and ousts any artifacts linked to TeamPCP from the environments. "The toolset harvests credentials from cloud, container, developer, productivity, and financial services, then exfiltrates the data through attacker-controlled infrastructure while attempting

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality Info Icon

To view factuality data please Upgrade to Premium

Ownership

Info Icon

To view ownership data please Upgrade to Vantage

Malware Analysis, News and Indicators broke the news on Thursday, May 7, 2026.
Too Big Arrow Icon
Sources are mostly out of (0)

Similar News Topics

Cyberattacks icon

Cyberattacks

Technology icon

Technology

Amazon Web Services (AWS) icon

Amazon Web Services (AWS)

Big Tech and Platforms icon

Big Tech and Platforms

Cybersecurity icon

Cybersecurity

News
Feed Dots Icon
For You
Search Icon
SearchBlindspot LogoBlindspotLocal