Skip to content
Auto-CTI
Back to all actors

TeamPCP

Cybercrime Financial Dormant
Mentions
6
First seen
21 May 2026
Last seen
08 Jun 2026

Relevant to you · Relevant

Threat focus:
supply chain

Origin

Unattributed

Sources

inferred Confidence medium

Profile

TeamPCP is a threat group known for large-scale supply chain attacks on open source ecosystems. They target package managers like npm and PyPI to inject malicious code into widely used libraries. The campaign involves container escape techniques and is documented under the name 'Mini Shai-Hulud'. Their activities have been observed through mid-2026 and pose a significant risk to the software supply chain.

Affected vendors

MicrosoftNx (nrwl)PyPIGitHubNpmGrafana LabsOpenAIMistral AINx ConsoleDockerKubernetesCheckmarx

Targeted sectors

supply chainContainerized EnvironmentsSoftware Supply ChainSoftwareentwicklungInformationstechnologie

Targeted regions

Global

Associated malware / tools

Mini Shai-Hulud

Linked CVEs

Activity (8 weeks)

22
23
24
25
26
27
28
29

Recent activity

ESC