Signal

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-03-24 18:21 UTCUpdated 2026-03-25 12:04 UTC

rss

cso_online

Source links open

Source links and full evidence are open here. Archive history, compare-over-time, alerts, exports, API, integrations, and workflow are paid.

Back Evidence (9)Get the free brief by email Start free trial

No card needed for the free brief.

Evidence trail (top sources)

top sources (4 domains)

4 top sources shown

Trivy supply chain breach compromises over 1,000 SaaS environments, Lapsus$ joins the extortion wave

CSO Online · News · csoonline.com · 2026-03-25 12:04 UTC

TeamPCP Expands Supply Chain Campaign With LiteLLM PyPI Compromise

Infosecurity Magazine · News · infosecurity-magazine.com · 2026-03-25 12:00 UTC

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

SecurityWeek · News · securityweek.com · 2026-03-25 11:55 UTC

LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks

Help Net Security · News · helpnetsecurity.com · 2026-03-25 11:50 UTC

View all evidence

Overview

Python interface for LLMs infected with malware via polluted CI/CD pipeline Two versions of LiteLLM, an open source interface for accessing multiple large language models, have been removed from the Python Package Index (PyPI) following a supply chain attack that injected...

Score total

1.82

Momentum 24h

9

Posts

9

Origins

7

Source types

1

Duplicate ratio

0%

All evidence

All evidence

Trivy supply chain breach compromises over 1,000 SaaS environments, Lapsus$ joins the extortion wave

CSO Online · csoonline.com · 2026-03-25 12:04 UTC

TeamPCP Expands Supply Chain Campaign With LiteLLM PyPI Compromise

Infosecurity Magazine · infosecurity-magazine.com · 2026-03-25 12:00 UTC

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

SecurityWeek · securityweek.com · 2026-03-25 11:55 UTC

LiteLLM PyPI packages compromised in expanding TeamPCP supply chain attacks

Help Net Security · helpnetsecurity.com · 2026-03-25 11:50 UTC

Guidance for detecting, investigating, and defending against the Trivy supply chain compromise

Microsoft Security Blog · microsoft.com · 2026-03-25 00:03 UTC

1K+ cloud environments infected following Trivy supply chain attack

The Register Security · go.theregister.com · 2026-03-24 20:31 UTC

Show filters & breakdown

Posts loaded: 0Publishers: 6Origin domains: 6Duplicates: -

Platform

Publisher

Origin domain

Relevance tier

Duplicates only

Showing 6 / 0

Top publishers (this list)

CSO Online (1)
Infosecurity Magazine (1)
SecurityWeek (1)
Help Net Security (1)
Microsoft Security Blog (1)
The Register Security (1)

Top origin domains (this list)

csoonline.com (1)
infosecurity-magazine.com (1)
securityweek.com (1)
helpnetsecurity.com (1)
microsoft.com (1)
go.theregister.com (1)