AttackFeed by Joe Wagner | TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files  - The Hacker News

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files  – The Hacker News

Posted on By [email protected] (The Hacker News)
Attack Feeds

TeamPCP, the threat actor behind the supply chain attack targeting Trivy, KICS, and litellm, has now compromised the telnyx Python package by pushing two malicious versions to steal sensitive data.
The two versions, 4.87.1 and 4.87.2, published to the Python Package Index (PyPI) repository on March 27, 2026, concealed their credential harvesting capabilities within a .WAV file. Users are  –

Read More  – The Hacker News 

You may also like

AttackFeed by Joe Wagner | ShinyHunters’ Instructure Canvas LMS and Vimeo Breaches Impact Millions of Users  - Hackread – Cybersecurity News, Data Breaches, AI and More
Attack Feeds
ShinyHunters’ Instructure Canvas LMS and Vimeo Breaches Impact Millions of Users  – Hackread – Cybersecurity News, Data Breaches, AI and More
May 6, 2026
AttackFeed by Joe Wagner | Cybersecurity Excellence Awards Reveal Nomination Shift from AI Hype to Governance Execution  - Hackread – Cybersecurity News, Data Breaches, AI and More
Attack Feeds
Cybersecurity Excellence Awards Reveal Nomination Shift from AI Hype to Governance Execution  – Hackread – Cybersecurity News, Data Breaches, AI and More
February 17, 2026
AttackFeed by Joe Wagner | New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption  - The Hacker News
Attack Feeds
New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption  – The Hacker News
May 14, 2026
AttackFeed by Joe Wagner | House Dems decry confirmed ICE usage of Paragon spyware  - CyberScoop
Attack Feeds
House Dems decry confirmed ICE usage of Paragon spyware  – CyberScoop
April 2, 2026