Data Breaches

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

March 27, 2026

TeamPCP, the threat actor behind the supply chain attack targeting Trivy, KICS, and litellm, has now compromised the telnyx Python package by pushing two malicious versions to steal sensitive data.
The two versions, 4.87.1 and 4.87.2, published to the Python Package Index (PyPI) repository on March 27, 2026, concealed their credential harvesting capabilities within a .WAV file. Users are

Subscribe to HackenPost

Get notified of the latest updates from Hackenpost.

Data Breaches

We Are At War

March 27, 2026

Data Breaches

Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits

March 27, 2026

Hand-Picked Top-Read Stories

Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug

TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation

Trending Tags

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Leave a Reply Cancel reply

Subscribe to HackenPost

Previous Post

We Are At War

Next Post

Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits

Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug

TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation

Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

We Are At War

Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware

TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files

Leave a Reply Cancel reply

Subscribe to HackenPost

Previous Post

Next Post

We Are At War

Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware

Related Posts